diff --git a/policycoreutils-gui.patch b/policycoreutils-gui.patch index 8851436..55cf46d 100644 --- a/policycoreutils-gui.patch +++ b/policycoreutils-gui.patch @@ -11889,7 +11889,7 @@ diff --exclude-from=exclude -N -u -r nsapolicycoreutils/gui/templates/etc_rw.py +""" diff --exclude-from=exclude -N -u -r nsapolicycoreutils/gui/templates/executable.py policycoreutils-2.0.78/gui/templates/executable.py --- nsapolicycoreutils/gui/templates/executable.py 1969-12-31 19:00:00.000000000 -0500 -+++ policycoreutils-2.0.78/gui/templates/executable.py 2009-12-08 17:05:49.000000000 -0500 ++++ policycoreutils-2.0.78/gui/templates/executable.py 2010-01-21 08:18:05.000000000 -0500 @@ -0,0 +1,359 @@ +# Copyright (C) 2007-2009 Red Hat +# see file 'COPYING' for use and warranty information @@ -11997,7 +11997,7 @@ diff --exclude-from=exclude -N -u -r nsapolicycoreutils/gui/templates/executable +domain_use_interactive_fds(TEMPLATETYPE_t) + +# internal communication is often done using fifo and unix sockets. -+allow TEMPLATETYPE_t self:fifo_file rw_file_perms; ++allow TEMPLATETYPE_t self:fifo_file rw_fifo_file_perms; +allow TEMPLATETYPE_t self:unix_stream_socket create_stream_socket_perms; + +files_read_etc_files(TEMPLATETYPE_t) @@ -12012,7 +12012,7 @@ diff --exclude-from=exclude -N -u -r nsapolicycoreutils/gui/templates/executable +""" + +te_userapp_rules=""" -+allow TEMPLATETYPE_t self:fifo_file manage_file_file_perms; ++allow TEMPLATETYPE_t self:fifo_file manage_fifo_file_perms; +allow TEMPLATETYPE_t self:unix_stream_socket create_stream_socket_perms; + +files_read_etc_files(TEMPLATETYPE_t) diff --git a/policycoreutils.spec b/policycoreutils.spec index e0f8c67..799f9be 100644 --- a/policycoreutils.spec +++ b/policycoreutils.spec @@ -1,12 +1,12 @@ %define libauditver 1.4.2-1 -%define libsepolver 2.0.38-1 -%define libsemanagever 2.0.39-1 -%define libselinuxver 2.0.87-1 +%define libsepolver 2.0.41-1 +%define libsemanagever 2.0.43-3 +%define libselinuxver 2.0.90-1 %define sepolgenver 1.0.19 Summary: SELinux policy core utilities Name: policycoreutils Version: 2.0.78 -Release: 12%{?dist} +Release: 13%{?dist} License: GPLv2+ Group: System Environment/Base Source: http://www.nsa.gov/selinux/archives/policycoreutils-%{version}.tgz @@ -26,7 +26,7 @@ Patch3: policycoreutils-gui.patch Patch4: policycoreutils-sepolgen.patch Obsoletes: policycoreutils < 2.0.61-2 -BuildRequires: pam-devel libsepol-static >= %{libsepolver} libsemanage-devel >= %{libsemanagever} libselinux-devel >= %{libselinuxver} libcap-devel audit-libs-devel >= %{libauditver} gettext +BuildRequires: pam-devel libsepol-static >= %{libsepolver} libsemanage-static >= %{libsemanagever} libselinux-devel >= %{libselinuxver} libcap-devel audit-libs-devel >= %{libauditver} gettext BuildRequires: desktop-file-utils dbus-devel dbus-glib-devel Requires: /bin/mount /bin/egrep /bin/awk /usr/bin/diff rpm /bin/sed Requires: libsepol >= %{libsepolver} coreutils checkpolicy libselinux-utils >= %{libselinuxver} @@ -297,10 +297,13 @@ fi exit 0 %changelog -* Thu Jan 14 2010 Dan Walsh 2.0.78-12 +* Thu Jan 21 2010 Dan Walsh 2.0.78-13 +- Fix executable template for fifo files + +* Tue Jan 19 2010 Dan Walsh 2.0.78-12 - Fix patch xod xmodmap - Exit 0 from script - + * Thu Jan 14 2010 Dan Walsh 2.0.78-11 - Run with the same xdmodmap in sandbox as outside - Patch from Josh Cogliati