diff options
| author |   Chris PeBenito <pebenito@gentoo.org> | 2004-02-26 01:13:08 +0000 |
|---|---|---|
| committer | Chris PeBenito <pebenito@gentoo.org> | 2004-02-26 01:13:08 +0000 |
| commit | 6fc1bf3b2eb576aadaca66e2f9a3d032ac324fe5 (patch) | |
| tree | 9d16ba5c1e1c5c35c9a9a7067345ae54f66678f5 /sec-policy | |
| parent | Updating KEYWORDS, see bug 34495 (diff) | |
| download | historical-6fc1bf3b2eb576aadaca66e2f9a3d032ac324fe5.tar.gz historical-6fc1bf3b2eb576aadaca66e2f9a3d032ac324fe5.tar.bz2 historical-6fc1bf3b2eb576aadaca66e2f9a3d032ac324fe5.zip | |
new release
Diffstat (limited to 'sec-policy')
4 files changed, 85 insertions, 2 deletions
diff --git a/sec-policy/selinux-base-policy/ChangeLog b/sec-policy/selinux-base-policy/ChangeLog index 23da65177fa3..aac09a1e9f95 100644 --- a/sec-policy/selinux-base-policy/ChangeLog +++ b/sec-policy/selinux-base-policy/ChangeLog @@ -1,6 +1,14 @@ # ChangeLog for sec-policy/selinux-base-policy # Copyright 2000-2004 Gentoo Technologies, Inc.; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/ChangeLog,v 1.15 2004/02/10 03:50:04 pebenito Exp $ +# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/ChangeLog,v 1.16 2004/02/26 01:12:58 pebenito Exp $ + +*selinux-base-policy-20040225 (25 Feb 2004) + + 25 Feb 2004; Chris PeBenito <pebenito@gentoo.org> + selinux-base-policy-20040225.ebuild: + New support for PaX ACL hooks. Addition of tunable.te for configurable policy + options. Rewrite of portage.te. Now auto-transition for sysadm is default, can + reenable portage_r by tunable.te. Makefile update from NSA CVS. *selinux-base-policy-20040209 (09 Feb 2004) diff --git a/sec-policy/selinux-base-policy/Manifest b/sec-policy/selinux-base-policy/Manifest index 7755e6c5eef1..86311fb26bf6 100644 --- a/sec-policy/selinux-base-policy/Manifest +++ b/sec-policy/selinux-base-policy/Manifest @@ -1,4 +1,6 @@ -MD5 e65e595d2685d89f4b82769aa63aed14 ChangeLog 5606 +MD5 8eb25eda1dff8cca219c3ec224459866 selinux-base-policy-20040225.ebuild 2265 +MD5 b073b8d02a1a05039b7b408a67b86652 ChangeLog 5970 MD5 808b5f7f5d6654666e9193672d463229 metadata.xml 473 MD5 80b2d56e3e7d6af2a82ef2fdeecbf7f8 selinux-base-policy-20040209.ebuild 2262 +MD5 7afea4eea1a3c5611ca773551fbd1bb5 files/digest-selinux-base-policy-20040225 80 MD5 ea0721d8ef8dbf149f81258e0d3fa86c files/digest-selinux-base-policy-20040209 80 diff --git a/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20040225 b/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20040225 new file mode 100644 index 000000000000..2941a8cf81fc --- /dev/null +++ b/sec-policy/selinux-base-policy/files/digest-selinux-base-policy-20040225 @@ -0,0 +1 @@ +MD5 860f28c0b67ede1fb0a245f035faa608 selinux-base-policy-20040225.tar.bz2 61163 diff --git a/sec-policy/selinux-base-policy/selinux-base-policy-20040225.ebuild b/sec-policy/selinux-base-policy/selinux-base-policy-20040225.ebuild new file mode 100644 index 000000000000..50ed9d05784b --- /dev/null +++ b/sec-policy/selinux-base-policy/selinux-base-policy-20040225.ebuild @@ -0,0 +1,72 @@ +# Copyright 1999-2004 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-base-policy/selinux-base-policy-20040225.ebuild,v 1.1 2004/02/26 01:12:58 pebenito Exp $ + +IUSE="build" + +DESCRIPTION="Gentoo base policy for SELinux" +HOMEPAGE="http://www.gentoo.org/proj/en/hardened/selinux/" +SRC_URI="mirror://gentoo/${P}.tar.bz2" +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="~x86 ~ppc ~sparc" +DEPEND="build? ( sys-devel/make )" +RDEPEND="sys-devel/m4 + sys-devel/make + !build? ( >=sys-libs/pam-0.77 )" + +S=${WORKDIR}/base-policy + +[ -z ${POLICYDIR} ] && POLICYDIR="/etc/security/selinux/src/policy" + +#src_unpack() { +# unpack ${A} +# cd ${S} +# epatch ${FILESDIR}/${P}-cvs.diff +#} + +src_install() { + if use build; then + # generate a file_contexts + dodir ${POLICYDIR}/file_contexts + einfo "Ignore the checkpolicy error on the next line." + make -C ${S} \ + FC=${D}/${POLICYDIR}/file_contexts/file_contexts \ + ${D}/${POLICYDIR}/file_contexts/file_contexts + + [ ! -f ${D}/${POLICYDIR}/file_contexts/file_contexts ] && \ + die "file_contexts was not generated." + else + # install full policy + dodir /etc/security/selinux/src + + insinto /etc/security + doins ${S}/appconfig/* + + cp -a ${S} ${D}/${POLICYDIR} + rm -fR ${D}/${POLICYDIR}/appconfig + fi +} + +pkg_postinst() { + echo + einfo "This is the base policy for SELinux on Gentoo. This policy" + einfo "package only covers the applications in the system profile." + einfo "More policy may need to be added according to your requirements." + echo + eerror "It is STRONGLY suggested that you evaluate and merge the" + eerror "policy changes. If any of the file contexts (*.fc) have" + eerror "changed, you should also relabel." + echo + ewarn "Please check the Changelog, there may be important information." + echo + echo -ne "\a" ; sleep 0.1 ; echo -ne "\a" ; sleep 1 + echo -ne "\a" ; sleep 0.1 ; echo -ne "\a" ; sleep 1 + echo -ne "\a" ; sleep 0.1 ; echo -ne "\a" ; sleep 1 + echo -ne "\a" ; sleep 0.1 ; echo -ne "\a" ; sleep 1 + echo -ne "\a" ; sleep 0.1 ; echo -ne "\a" ; sleep 1 + echo -ne "\a" ; sleep 0.1 ; echo -ne "\a" ; sleep 1 + echo -ne "\a" ; sleep 0.1 ; echo -ne "\a" ; sleep 1 + echo -ne "\a" ; sleep 0.1 ; echo -ne "\a" ; sleep 1 + sleep 8 +} |