summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorChris PeBenito <pebenito@gentoo.org>2005-12-08 00:22:08 +0000
committerChris PeBenito <pebenito@gentoo.org>2005-12-08 00:22:08 +0000
commit999170c59ad13ecd0d07cd85f22bcd137b098f6a (patch)
treebaa86c2e691b420969e80ac7366d07731fad0948 /sec-policy
parentHave dumpelf show .comment/.interp sections, properly set shdr/phdr to NULL w... (diff)
downloadhistorical-999170c59ad13ecd0d07cd85f22bcd137b098f6a.tar.gz
historical-999170c59ad13ecd0d07cd85f22bcd137b098f6a.tar.bz2
historical-999170c59ad13ecd0d07cd85f22bcd137b098f6a.zip
Update Makefile to use policycoreutils compat symlink. No other changes.
Package-Manager: portage-2.0.53
Diffstat (limited to 'sec-policy')
-rw-r--r--sec-policy/selinux-base-policy/ChangeLog9
-rw-r--r--sec-policy/selinux-base-policy/Manifest10
-rw-r--r--sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20051022-r11
-rw-r--r--sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild95
4 files changed, 110 insertions, 5 deletions
diff --git a/sec-policy/selinux-base-policy/ChangeLog b/sec-policy/selinux-base-policy/ChangeLog
index 16aa054b6acb..ce8f476cd0e6 100644
--- a/sec-policy/selinux-base-policy/ChangeLog
+++ b/sec-policy/selinux-base-policy/ChangeLog
@@ -1,6 +1,13 @@
# ChangeLog for sec-policy/selinux-base-policy
# Copyright 2000-2005 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/ChangeLog,v 1.43 2005/10/22 14:16:00 pebenito Exp $
+# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/ChangeLog,v 1.44 2005/12/08 00:22:08 pebenito Exp $
+
+*selinux-base-policy-20051022-r1 (08 Dec 2005)
+
+ 08 Dec 2005; Chris PeBenito <pebenito@gentoo.org>
+ +selinux-base-policy-20051022-r1.ebuild:
+ Change to use compatability genhomedircon. Newer policycoreutils (1.28)
+ breaks the backwards compatability this policy uses.
*selinux-base-policy-20051022 (22 Oct 2005)
diff --git a/sec-policy/selinux-base-policy/Manifest b/sec-policy/selinux-base-policy/Manifest
index fe8082850d4c..6e939188576a 100644
--- a/sec-policy/selinux-base-policy/Manifest
+++ b/sec-policy/selinux-base-policy/Manifest
@@ -1,20 +1,22 @@
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
-MD5 f86509dcfd70c37e7b3f01d13cd035c6 ChangeLog 10907
+MD5 c8e6b87204c0f204499eabf8d89d58d9 ChangeLog 11180
MD5 5b8c65e44cb570ebee4e17345bb4f262 files/digest-selinux-base-policy-20050322 80
MD5 7630716cefae6d19aa69756e59ecf136 files/digest-selinux-base-policy-20050618 80
MD5 ed7cdf2d44decbfb09c2a534fc12af17 files/digest-selinux-base-policy-20050821 80
MD5 e98762e20bb0670885487f9d1998489e files/digest-selinux-base-policy-20051022 80
+MD5 e98762e20bb0670885487f9d1998489e files/digest-selinux-base-policy-20051022-r1 80
MD5 808b5f7f5d6654666e9193672d463229 metadata.xml 473
MD5 67260c4c2cbc9b44df8cff56e08a7da9 selinux-base-policy-20050322.ebuild 2624
MD5 ae5d2348fdc5509b7d4f912a7f1736d6 selinux-base-policy-20050618.ebuild 2635
MD5 ad76350c877b532b992fdc81d13bec0f selinux-base-policy-20050821.ebuild 2635
+MD5 e5978ae6f0034551254197ddbf404567 selinux-base-policy-20051022-r1.ebuild 2700
MD5 9300977856f85730475099c651a3cf24 selinux-base-policy-20051022.ebuild 2635
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
-iD8DBQFDWkm3J+ChZlpDtAoRAq2BAJ4nYMA2RyU4HJSfTb+7hmHYxCE6FQCfY5RG
-SwgX4Dl4/6hPwotJvM8EL/E=
-=BtpY
+iD8DBQFDl3zdJ+ChZlpDtAoRAtOPAJ9ZmsgFw7wNbDjujC6jIB7ZdTXNKgCeOrQU
+1x+vUagD4/9efgHhuKgA+DI=
+=Sj4h
-----END PGP SIGNATURE-----
diff --git a/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20051022-r1 b/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20051022-r1
new file mode 100644
index 000000000000..2c1f8e7e16fc
--- /dev/null
+++ b/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20051022-r1
@@ -0,0 +1 @@
+MD5 d15ed697e76eb7494174752ed93cb76f selinux-base-policy-20051022.tar.bz2 78419
diff --git a/sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild b/sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild
new file mode 100644
index 000000000000..555cf766e9cf
--- /dev/null
+++ b/sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild
@@ -0,0 +1,95 @@
+# Copyright 1999-2005 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild,v 1.1 2005/12/08 00:22:08 pebenito Exp $
+
+IUSE="build"
+
+inherit eutils
+
+DESCRIPTION="Gentoo base policy for SELinux"
+HOMEPAGE="http://www.gentoo.org/proj/en/hardened/selinux/"
+SRC_URI="mirror://gentoo/${P}.tar.bz2"
+LICENSE="GPL-2"
+SLOT="0"
+#KEYWORDS="~x86 ~ppc ~sparc ~amd64 ~mips"
+KEYWORDS="x86 ppc sparc amd64 mips"
+DEPEND="build? ( sys-devel/make
+ sys-devel/m4 )"
+RDEPEND="sys-devel/m4
+ sys-devel/make"
+
+S=${WORKDIR}/base-policy
+
+[ -z ${POLICYDIR} ] && POLICYDIR="/etc/security/selinux/src/policy"
+
+# deprecated policies:
+DEPRECATED="domains/program/devfsd.te domains/program/opt.te
+ file_contexts/program/devfsd.fc file_contexts/program/opt.fc
+ file_contexts/users.fc domains/program/inetd.te
+ domains/program/tcpd.te file_contexts/program/inetd.fc
+ file_contexts/program/tcpd.fc macros/program/ypbind_macros.te"
+
+src_compile() {
+ return
+}
+
+src_install() {
+ sed -i -e 's/genhomedircon/genhomedircon.old/' ${S}/Makefile
+ if use build; then
+ # generate a file_contexts
+ dodir ${POLICYDIR}/file_contexts
+ einfo "Ignore the checkpolicy error on the next line."
+ make -C ${S} \
+ FC=${D}/${POLICYDIR}/file_contexts/file_contexts \
+ ${D}/${POLICYDIR}/file_contexts/file_contexts
+
+ [ ! -f ${D}/${POLICYDIR}/file_contexts/file_contexts ] && \
+ die "file_contexts was not generated."
+ else
+ # install full policy
+ dodir /etc/security/selinux/src
+
+ insinto /etc/security
+ doins ${S}/appconfig/*
+
+ cp -a ${S} ${D}/${POLICYDIR}
+ rm -fR ${D}/${POLICYDIR}/appconfig
+ fi
+}
+
+pkg_postinst() {
+ local isdeprecated
+
+ if ! ( use build || use bootstrap )
+ then
+ ewarn "Removing invalid backup copies of critical config files..."
+ rm -f ${ROOT}/${POLICYDIR}/._cfg????_users
+ fi
+
+ echo
+ einfo "This is the base policy for SELinux on Gentoo. This policy"
+ einfo "package only covers the applications in the system profile."
+ einfo "More policy may need to be added according to your requirements."
+ echo
+ eerror "It is STRONGLY suggested that you evaluate and merge the"
+ eerror "policy changes. If any of the file contexts (*.fc) have"
+ eerror "changed, you should also relabel."
+ echo
+ ewarn "Please check the Changelog, there may be important information."
+ echo
+ echo
+
+ einfo "Checking for deprecated policy..."
+ for i in $DEPRECATED; do
+ if [ -f "${POLICYDIR}/${i}" ]; then
+ eerror "${POLICYDIR}/${i}"
+ isdeprecated="y"
+ fi
+ done
+ [ "${isdeprecated}" ] && \
+ eerror "The above policy file(s) should be removed if possible." || \
+ einfo "None found."
+
+ ebeep 4
+ epause 4
+}