diff options
author | Chris PeBenito <pebenito@gentoo.org> | 2005-12-08 00:22:08 +0000 |
---|---|---|
committer | Chris PeBenito <pebenito@gentoo.org> | 2005-12-08 00:22:08 +0000 |
commit | 999170c59ad13ecd0d07cd85f22bcd137b098f6a (patch) | |
tree | baa86c2e691b420969e80ac7366d07731fad0948 /sec-policy | |
parent | Have dumpelf show .comment/.interp sections, properly set shdr/phdr to NULL w... (diff) | |
download | historical-999170c59ad13ecd0d07cd85f22bcd137b098f6a.tar.gz historical-999170c59ad13ecd0d07cd85f22bcd137b098f6a.tar.bz2 historical-999170c59ad13ecd0d07cd85f22bcd137b098f6a.zip |
Update Makefile to use policycoreutils compat symlink. No other changes.
Package-Manager: portage-2.0.53
Diffstat (limited to 'sec-policy')
4 files changed, 110 insertions, 5 deletions
diff --git a/sec-policy/selinux-base-policy/ChangeLog b/sec-policy/selinux-base-policy/ChangeLog index 16aa054b6acb..ce8f476cd0e6 100644 --- a/sec-policy/selinux-base-policy/ChangeLog +++ b/sec-policy/selinux-base-policy/ChangeLog @@ -1,6 +1,13 @@ # ChangeLog for sec-policy/selinux-base-policy # Copyright 2000-2005 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/ChangeLog,v 1.43 2005/10/22 14:16:00 pebenito Exp $ +# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/ChangeLog,v 1.44 2005/12/08 00:22:08 pebenito Exp $ + +*selinux-base-policy-20051022-r1 (08 Dec 2005) + + 08 Dec 2005; Chris PeBenito <pebenito@gentoo.org> + +selinux-base-policy-20051022-r1.ebuild: + Change to use compatability genhomedircon. Newer policycoreutils (1.28) + breaks the backwards compatability this policy uses. *selinux-base-policy-20051022 (22 Oct 2005) diff --git a/sec-policy/selinux-base-policy/Manifest b/sec-policy/selinux-base-policy/Manifest index fe8082850d4c..6e939188576a 100644 --- a/sec-policy/selinux-base-policy/Manifest +++ b/sec-policy/selinux-base-policy/Manifest @@ -1,20 +1,22 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 -MD5 f86509dcfd70c37e7b3f01d13cd035c6 ChangeLog 10907 +MD5 c8e6b87204c0f204499eabf8d89d58d9 ChangeLog 11180 MD5 5b8c65e44cb570ebee4e17345bb4f262 files/digest-selinux-base-policy-20050322 80 MD5 7630716cefae6d19aa69756e59ecf136 files/digest-selinux-base-policy-20050618 80 MD5 ed7cdf2d44decbfb09c2a534fc12af17 files/digest-selinux-base-policy-20050821 80 MD5 e98762e20bb0670885487f9d1998489e files/digest-selinux-base-policy-20051022 80 +MD5 e98762e20bb0670885487f9d1998489e files/digest-selinux-base-policy-20051022-r1 80 MD5 808b5f7f5d6654666e9193672d463229 metadata.xml 473 MD5 67260c4c2cbc9b44df8cff56e08a7da9 selinux-base-policy-20050322.ebuild 2624 MD5 ae5d2348fdc5509b7d4f912a7f1736d6 selinux-base-policy-20050618.ebuild 2635 MD5 ad76350c877b532b992fdc81d13bec0f selinux-base-policy-20050821.ebuild 2635 +MD5 e5978ae6f0034551254197ddbf404567 selinux-base-policy-20051022-r1.ebuild 2700 MD5 9300977856f85730475099c651a3cf24 selinux-base-policy-20051022.ebuild 2635 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) -iD8DBQFDWkm3J+ChZlpDtAoRAq2BAJ4nYMA2RyU4HJSfTb+7hmHYxCE6FQCfY5RG -SwgX4Dl4/6hPwotJvM8EL/E= -=BtpY +iD8DBQFDl3zdJ+ChZlpDtAoRAtOPAJ9ZmsgFw7wNbDjujC6jIB7ZdTXNKgCeOrQU +1x+vUagD4/9efgHhuKgA+DI= +=Sj4h -----END PGP SIGNATURE----- diff --git a/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20051022-r1 b/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20051022-r1 new file mode 100644 index 000000000000..2c1f8e7e16fc --- /dev/null +++ b/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20051022-r1 @@ -0,0 +1 @@ +MD5 d15ed697e76eb7494174752ed93cb76f selinux-base-policy-20051022.tar.bz2 78419 diff --git a/sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild b/sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild new file mode 100644 index 000000000000..555cf766e9cf --- /dev/null +++ b/sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild @@ -0,0 +1,95 @@ +# Copyright 1999-2005 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/selinux-base-policy-20051022-r1.ebuild,v 1.1 2005/12/08 00:22:08 pebenito Exp $ + +IUSE="build" + +inherit eutils + +DESCRIPTION="Gentoo base policy for SELinux" +HOMEPAGE="http://www.gentoo.org/proj/en/hardened/selinux/" +SRC_URI="mirror://gentoo/${P}.tar.bz2" +LICENSE="GPL-2" +SLOT="0" +#KEYWORDS="~x86 ~ppc ~sparc ~amd64 ~mips" +KEYWORDS="x86 ppc sparc amd64 mips" +DEPEND="build? ( sys-devel/make + sys-devel/m4 )" +RDEPEND="sys-devel/m4 + sys-devel/make" + +S=${WORKDIR}/base-policy + +[ -z ${POLICYDIR} ] && POLICYDIR="/etc/security/selinux/src/policy" + +# deprecated policies: +DEPRECATED="domains/program/devfsd.te domains/program/opt.te + file_contexts/program/devfsd.fc file_contexts/program/opt.fc + file_contexts/users.fc domains/program/inetd.te + domains/program/tcpd.te file_contexts/program/inetd.fc + file_contexts/program/tcpd.fc macros/program/ypbind_macros.te" + +src_compile() { + return +} + +src_install() { + sed -i -e 's/genhomedircon/genhomedircon.old/' ${S}/Makefile + if use build; then + # generate a file_contexts + dodir ${POLICYDIR}/file_contexts + einfo "Ignore the checkpolicy error on the next line." + make -C ${S} \ + FC=${D}/${POLICYDIR}/file_contexts/file_contexts \ + ${D}/${POLICYDIR}/file_contexts/file_contexts + + [ ! -f ${D}/${POLICYDIR}/file_contexts/file_contexts ] && \ + die "file_contexts was not generated." + else + # install full policy + dodir /etc/security/selinux/src + + insinto /etc/security + doins ${S}/appconfig/* + + cp -a ${S} ${D}/${POLICYDIR} + rm -fR ${D}/${POLICYDIR}/appconfig + fi +} + +pkg_postinst() { + local isdeprecated + + if ! ( use build || use bootstrap ) + then + ewarn "Removing invalid backup copies of critical config files..." + rm -f ${ROOT}/${POLICYDIR}/._cfg????_users + fi + + echo + einfo "This is the base policy for SELinux on Gentoo. This policy" + einfo "package only covers the applications in the system profile." + einfo "More policy may need to be added according to your requirements." + echo + eerror "It is STRONGLY suggested that you evaluate and merge the" + eerror "policy changes. If any of the file contexts (*.fc) have" + eerror "changed, you should also relabel." + echo + ewarn "Please check the Changelog, there may be important information." + echo + echo + + einfo "Checking for deprecated policy..." + for i in $DEPRECATED; do + if [ -f "${POLICYDIR}/${i}" ]; then + eerror "${POLICYDIR}/${i}" + isdeprecated="y" + fi + done + [ "${isdeprecated}" ] && \ + eerror "The above policy file(s) should be removed if possible." || \ + einfo "None found." + + ebeep 4 + epause 4 +} |