diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.2-r2 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.2-r2 index be56447134..61895e2bbb 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.2-r2 +++ b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.2-r2 @@ -10,5 +10,5 @@ RDEPEND=>=sys-libs/libsepol-2.2 >=sys-libs/libselinux-2.2.2-r1 dev-libs/ustr sys RESTRICT=test SLOT=0 SRC_URI=http://userspace.selinuxproject.org/releases/20131030/libsemanage-2.2.tar.gz -_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 30887c5e8630bbf27b5cf0fd74564323 toolchain-funcs 42408102d713fbad60ca21349865edb4 -_md5_=a152964c87ace4bf28d2671862e4f8ff +_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 2e6826f6a93ad2acf904eecf5b5fb6d2 toolchain-funcs 7a212e5e01adfa4805c9978366e6ee85 +_md5_=1d4264d89c75d93af7d682ef201e9041 diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.3-r4 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.3-r4 index 3179cdc083..8cacf35990 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.3-r4 +++ b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.3-r4 @@ -10,5 +10,5 @@ RDEPEND=>=sys-libs/libsepol-2.3[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,ab RESTRICT=test SLOT=0 SRC_URI=https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20140506/libsemanage-2.3.tar.gz -_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 30887c5e8630bbf27b5cf0fd74564323 toolchain-funcs 42408102d713fbad60ca21349865edb4 -_md5_=96acef1f47f39f6b269c801e5fac3660 +_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 2e6826f6a93ad2acf904eecf5b5fb6d2 toolchain-funcs 7a212e5e01adfa4805c9978366e6ee85 +_md5_=6884905896051f2ea6819b39bd62d98f diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.4-r1 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.4-r1 index b21a22c650..4df7ba514b 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.4-r1 +++ b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.4-r1 @@ -10,5 +10,5 @@ RDEPEND=>=sys-libs/libsepol-2.4[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,ab RESTRICT=test SLOT=0 SRC_URI=https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20150202/libsemanage-2.4.tar.gz -_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 30887c5e8630bbf27b5cf0fd74564323 toolchain-funcs 42408102d713fbad60ca21349865edb4 -_md5_=b1665ea83bf49803d40800063afa9f4a +_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 2e6826f6a93ad2acf904eecf5b5fb6d2 toolchain-funcs 7a212e5e01adfa4805c9978366e6ee85 +_md5_=e402a0d91038def9cc9e8338770992ca diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.4-r2 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.4-r2 new file mode 100644 index 0000000000..154e3e0927 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-2.4-r2 @@ -0,0 +1,14 @@ +DEFINED_PHASES=compile configure install postinst prepare test +DEPEND=>=sys-libs/libsepol-2.4[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=sys-libs/libselinux-2.4[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=sys-process/audit-2.2.2[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=dev-libs/ustr-1.0.4-r2[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] sys-devel/bison sys-devel/flex python? ( >=dev-lang/swig-2.0.4-r1 virtual/pkgconfig python_targets_python2_7? ( >=dev-lang/python-2.7.5-r2:2.7 ) python_targets_python3_3? ( >=dev-lang/python-3.3.2-r2:3.3 ) python_targets_python3_4? ( dev-lang/python:3.4 ) >=dev-lang/python-exec-2:=[python_targets_python2_7(-)?,python_targets_python3_3(-)?,python_targets_python3_4(-)?,-python_single_target_python2_7(-),-python_single_target_python3_3(-),-python_single_target_python3_4(-)] ) +DESCRIPTION=SELinux kernel and policy management library +EAPI=5 +HOMEPAGE=https://github.com/SELinuxProject/selinux/wiki +IUSE=python python_targets_python2_7 python_targets_python3_3 python_targets_python3_4 abi_x86_32 abi_x86_64 abi_x86_x32 abi_mips_n32 abi_mips_n64 abi_mips_o32 abi_ppc_32 abi_ppc_64 abi_s390_32 abi_s390_64 +KEYWORDS=amd64 ~arm ~arm64 ~mips x86 +LICENSE=GPL-2 +RDEPEND=>=sys-libs/libsepol-2.4[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=sys-libs/libselinux-2.4[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=sys-process/audit-2.2.2[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=dev-libs/ustr-1.0.4-r2[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] +RESTRICT=test +SLOT=0 +SRC_URI=https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20150202/libsemanage-2.4.tar.gz +_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 2e6826f6a93ad2acf904eecf5b5fb6d2 toolchain-funcs 7a212e5e01adfa4805c9978366e6ee85 +_md5_=735647b46803cadb1de5eebcd4d0dee9 diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-9999 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-9999 index 1d8d32f38c..43f2caa779 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-9999 +++ b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/sys-libs/libsemanage-9999 @@ -8,5 +8,5 @@ LICENSE=GPL-2 RDEPEND=>=sys-libs/libsepol-9999[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=sys-libs/libselinux-9999[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=sys-process/audit-2.2.2[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] >=dev-libs/ustr-1.0.4-r2[abi_x86_32(-)?,abi_x86_64(-)?,abi_x86_x32(-)?,abi_mips_n32(-)?,abi_mips_n64(-)?,abi_mips_o32(-)?,abi_ppc_32(-)?,abi_ppc_64(-)?,abi_s390_32(-)?,abi_s390_64(-)?] RESTRICT=test SLOT=0 -_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de git-r3 ab80045e5d080584334f33013f4df21d multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 30887c5e8630bbf27b5cf0fd74564323 toolchain-funcs 42408102d713fbad60ca21349865edb4 -_md5_=96e404c608fd630344d0ce20ded283e0 +_eclasses_=eutils 9fb270e417e0e83d64ca52586c4a79de git-r3 ab80045e5d080584334f33013f4df21d multibuild 6d4858dc00f8bc51caf3f957f8430eb0 multilib 62927b3db3a589b0806255f3a002d5d3 multilib-build 0983c7893df461213a05f791cc7dea6d multilib-minimal 13dd976916c35a1e2c8d170e840c7018 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 2e6826f6a93ad2acf904eecf5b5fb6d2 toolchain-funcs 7a212e5e01adfa4805c9978366e6ee85 +_md5_=ba03367813bbb8259686ff3ebedea317 diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/ChangeLog b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/ChangeLog index 6900079b01..cfd0cbfacd 100644 --- a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/ChangeLog +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/ChangeLog @@ -1,414 +1,105 @@ # ChangeLog for sys-libs/libsemanage -# Copyright 1999-2015 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sys-libs/libsemanage/ChangeLog,v 1.94 2015/06/09 15:36:24 swift Exp $ +# Copyright 1999-2016 Gentoo Foundation; Distributed under the GPL v2 +# (auto-generated from git log) -*libsemanage-9999 (09 Jun 2015) +*libsemanage-9999 (09 Aug 2015) +*libsemanage-2.4-r1 (09 Aug 2015) +*libsemanage-2.3-r4 (09 Aug 2015) +*libsemanage-2.2-r2 (09 Aug 2015) - 09 Jun 2015; Sven Vermeulen +libsemanage-9999.ebuild: - Adding libsemanage-9999 to better support upstream integrations - - 10 May 2015; Jason Zaman libsemanage-2.4-r1.ebuild: - stabilize selinux 2.4 userland - - 09 May 2015; Jason Zaman -libsemanage-2.4.ebuild: - drop broken - -*libsemanage-2.4-r1 (23 Apr 2015) - - 23 Apr 2015; Jason Zaman + 09 Aug 2015; Robin H. Johnson +files/0001-libsemanage-do-not-copy-contexts-in-semanage_migrate.patch, - +libsemanage-2.4-r1.ebuild, - -files/0002-semanage_migrate_store-Python3-support.patch: - rev bump with migration patch + +libsemanage-2.2-r2.ebuild, +libsemanage-2.3-r4.ebuild, + +libsemanage-2.4-r1.ebuild, +libsemanage-9999.ebuild, +metadata.xml: + proj/gentoo: Initial commit - 18 Apr 2015; Jason Zaman -libsemanage-2.3-r3.ebuild, - -libsemanage-2.4_rc6-r2.ebuild, -libsemanage-2.4_rc7.ebuild: - Drop old RCs + This commit represents a new era for Gentoo: + Storing the gentoo-x86 tree in Git, as converted from CVS. - 08 Apr 2015; Michał Górny libsemanage-2.2-r2.ebuild, - libsemanage-2.3-r3.ebuild, libsemanage-2.3-r4.ebuild, libsemanage-2.4.ebuild, - libsemanage-2.4_rc6-r2.ebuild, libsemanage-2.4_rc7.ebuild: - Drop old Python implementations + This commit is the start of the NEW history. + Any historical data is intended to be grafted onto this point. -*libsemanage-2.4 (04 Feb 2015) + Creation process: + 1. Take final CVS checkout snapshot + 2. Remove ALL ChangeLog* files + 3. Transform all Manifests to thin + 4. Remove empty Manifests + 5. Convert all stale $Header$/$Id$ CVS keywords to non-expanded Git $Id$ + 5.1. Do not touch files with -kb/-ko keyword flags. - 04 Feb 2015; Jason Zaman +libsemanage-2.4.ebuild: - Version bump + Signed-off-by: Robin H. Johnson + X-Thanks: Alec Warner - did the GSoC 2006 migration + tests + X-Thanks: Robin H. Johnson - infra guy, herding this + project + X-Thanks: Nguyen Thai Ngoc Duy - Former Gentoo + developer, wrote Git features for the migration + X-Thanks: Brian Harring - wrote much python to improve + cvs2svn + X-Thanks: Rich Freeman - validation scripts + X-Thanks: Patrick Lauer - Gentoo dev, running new 2014 + work in migration + X-Thanks: Michał Górny - scripts, QA, nagging + X-Thanks: All of other Gentoo developers - many ideas and lots of paint on + the bikeshed - 26 Jan 2015; Agostino Sarubbo libsemanage-2.3-r4.ebuild: - Stable for x86, wrt bug #535684 + 24 Aug 2015; Justin Lecher metadata.xml: + Use https by default - 22 Jan 2015; Agostino Sarubbo libsemanage-2.3-r4.ebuild: - Stable for amd64, wrt bug #535684 + Convert all URLs for sites supporting encrypted connections from http to + https -*libsemanage-2.4_rc7 (06 Dec 2014) + Signed-off-by: Justin Lecher - 06 Dec 2014; Jason Zaman +libsemanage-2.4_rc7.ebuild, - -libsemanage-2.3-r2.ebuild, -libsemanage-2.4_rc2.ebuild, - -libsemanage-2.4_rc5.ebuild, -libsemanage-2.4_rc6-r1.ebuild, - -libsemanage-2.4_rc6.ebuild: - version bump and ebuild clean up, drop old RC + 24 Aug 2015; Mike Gilbert metadata.xml: + Revert DOCTYPE SYSTEM https changes in metadata.xml -*libsemanage-2.3-r4 (04 Dec 2014) + repoman does not yet accept the https version. + This partially reverts eaaface92ee81f30a6ac66fe7acbcc42c00dc450. - 04 Dec 2014; Jason Zaman +libsemanage-2.3-r4.ebuild, - libsemanage-2.4_rc6-r2.ebuild: - Call python_optimize, bug 531638 + Bug: https://bugs.gentoo.org/552720 -*libsemanage-2.4_rc6-r2 (27 Nov 2014) +*libsemanage-2.4-r2 (04 Sep 2015) - 27 Nov 2014; Sven Vermeulen +libsemanage-2.4_rc6-r2.ebuild: - Migrate store as soon as possible, but do not reload policy (bug 530864) + 04 Sep 2015; Jason Zaman + +files/0002-libsemanage-Add-policy-binary-and-file_contexts.loca.patch, + +files/0003-libsemanage-Add-file_contexts-and-seusers-to-the-sto.patch, + +files/0004-libsemanage-save-homedir_template-in-the-policy-stor.patch, + +files/0005-libsemanage-store-users_extra-in-the-policy-store.patch, + +libsemanage-2.4-r2.ebuild: + add patches to fix missing homedir contexts -*libsemanage-2.4_rc6-r1 (22 Nov 2014) + Gentoo-Bug: https://bugs.gentoo.org/558686 - 22 Nov 2014; Jason Zaman - +files/0002-semanage_migrate_store-Python3-support.patch, - +libsemanage-2.4_rc6-r1.ebuild: - python3 support for semanage_migrate_store. bug 529252 + Package-Manager: portage-2.2.20.1 -*libsemanage-2.4_rc6 (14 Nov 2014) + 10 Oct 2015; Jason Zaman libsemanage-2.4-r2.ebuild: + Stabilize 2.4-r2 - 14 Nov 2014; Sven Vermeulen +libsemanage-2.4_rc6.ebuild: - Bump to rc6, add python3_4 to PYTHON_COMPAT (fixes bug 529176); rc6 also fixes - unconfined issue when USE=-unconfined is set + fixes bug with contexts being empty after some operations - 01 Nov 2014; Sven Vermeulen libsemanage-2.3-r3.ebuild: - Stabilize libsemanage-2.3-r3 (fix for bug #520608) + Package-Manager: portage-2.2.20.1 -*libsemanage-2.4_rc5 (29 Oct 2014) + 21 Dec 2015; Jason Zaman metadata.xml: + migrate selinux herd to project - 29 Oct 2014; Sven Vermeulen +libsemanage-2.4_rc5.ebuild, - -libsemanage-2.4_rc4.ebuild: - Bump to 2.4_rc5 + Package-Manager: portage-2.2.24 -*libsemanage-2.4_rc4 (07 Oct 2014) + 24 Jan 2016; Michał Górny metadata.xml: + Set appropriate maintainer types in metadata.xml (GLEP 67) - 07 Oct 2014; Sven Vermeulen +libsemanage-2.4_rc4.ebuild: - Bump to 2.4-rc4 + 17 Feb 2016; Mike Frysinger + +files/libsemanage-2.4-build-paths.patch, libsemanage-2.4-r2.ebuild, + libsemanage-9999.ebuild: + fix bad -I/-L flag usage -*libsemanage-2.4_rc2 (21 Sep 2014) + 17 Feb 2016; Mike Frysinger libsemanage-2.4-r2.ebuild, + libsemanage-9999.ebuild: + improve ROOT handling in pkg_postinst - 21 Sep 2014; Sven Vermeulen +libsemanage-2.4_rc2.ebuild, - libsemanage-2.3-r2.ebuild, libsemanage-2.3-r3.ebuild: - Noved to github; also add in masked 2.4 series + Also ignore errors when /etc/selinux/config doesn't exist. - 16 Sep 2014; Brian Dolbec libsemanage-2.3-r3.ebuild: - Add python-3.4 target. Tested and confirmed working by perfinion. + 18 Feb 2016; Mike Frysinger libsemanage-2.4-r2.ebuild, + libsemanage-9999.ebuild: + selinux: initial arm/arm64/mips support -*libsemanage-2.3-r3 (23 Aug 2014) - - 23 Aug 2014; Sven Vermeulen +libsemanage-2.3-r3.ebuild: - Fix bug #520608 - Install .so in correct multilib location - - 05 Aug 2014; Sven Vermeulen -libsemanage-2.2.ebuild, - -libsemanage-2.3-r1.ebuild, -libsemanage-2.3.ebuild: - Remove obsoleted ebuilds - - 05 Aug 2014; Sven Vermeulen libsemanage-2.2-r2.ebuild: - Stabilize latest libsemanage-2.2 - - 30 Jul 2014; Sven Vermeulen libsemanage-2.3-r2.ebuild: - Fix bug #514194 - Stabilization of SELinux userspace 2.3 - - 18 Jun 2014; Michał Górny libsemanage-2.3-r2.ebuild: - Update dependencies to require guaranteed EAPI=5 or multilib ebuilds, bug - #513718. - -*libsemanage-2.3-r2 (02 Jun 2014) - - 02 Jun 2014; Sven Vermeulen +libsemanage-2.3-r2.ebuild: - Update multilib support in libsemanage with thanks to Arfrever - -*libsemanage-2.3-r1 (01 Jun 2014) - - 01 Jun 2014; Sven Vermeulen +libsemanage-2.3-r1.ebuild: - Fixing multilib support (bug #506460) with thanks to Sven Eden. Package has - dep on audit-2.2.2 which is p.masked so added same package to p.mask combo - - 10 May 2014; Sven Vermeulen -libsemanage-2.1.10.ebuild, - -libsemanage-2.2-r1.ebuild, -libsemanage-2.3_rc1.ebuild: - Spring cleanup - -*libsemanage-2.3 (09 May 2014) - - 09 May 2014; Sven Vermeulen +libsemanage-2.3.ebuild: - Bump to 2.3 - -*libsemanage-2.3_rc1 (28 Apr 2014) - - 28 Apr 2014; Sven Vermeulen +libsemanage-2.3_rc1.ebuild: - 2.3-rc1 release - -*libsemanage-2.2-r2 (23 Mar 2014) - - 23 Mar 2014; Sven Vermeulen +libsemanage-2.2-r2.ebuild: - Fix bug #502078 - have SHLIBS use PREFIX, not DESTDIR - - 02 Feb 2014; Sven Vermeulen +libsemanage-2.2-r1.ebuild: - Support multilib - -*libsemanage-2.2-r1 (02 Feb 2014) - - 02 Feb 2014; Sven Vermeulen +libsemanage-2.2-r1.ebuild: - Removing ruby support for libsemanage for now (libselinux has it removed as - we) - - 01 Feb 2014; Sven Vermeulen libsemanage-2.2.ebuild: - Adding python3_3 to supported Pythons, see bug #499606 - - 20 Jan 2014; Sven Vermeulen libsemanage-2.2.ebuild: - Fix bug #497754 - Add in dep on virtual/pgkconfig - - 20 Jan 2014; Sven Vermeulen libsemanage-2.2.ebuild: - Stabilize for amd64 and x86 - - 23 Dec 2013; Sven Vermeulen -libsemanage-2.1.9.ebuild: - Cleanup old version - - 10 Nov 2013; Sven Vermeulen libsemanage-2.2.ebuild: - Adding dependency to audit (bug #490488) - -*libsemanage-2.2 (04 Nov 2013) - - 04 Nov 2013; Sven Vermeulen +libsemanage-2.2.ebuild: - New libsemanage release - - 07 Jul 2013; Sven Vermeulen -libsemanage-2.1.6.ebuild, - -libsemanage-2.1.6-r2.ebuild: - Summer cleaning - - 16 Jun 2013; Sven Vermeulen libsemanage-2.1.10.ebuild: - Stabilization - -*libsemanage-2.1.10 (25 Apr 2013) - - 25 Apr 2013; Sven Vermeulen +libsemanage-2.1.10.ebuild: - New upstream release - - 07 Feb 2013; Sven Vermeulen libsemanage-2.1.9.ebuild: - Python 2.6 is not supported with libsemanage, see bug #445216 - - 17 Nov 2012; libsemanage-2.1.9.ebuild: - Stabilization - - 13 Oct 2012; libsemanage-2.1.9.ebuild: - Supporting user-provided patches using epatch_user - -*libsemanage-2.1.9 (09 Oct 2012) - - 09 Oct 2012; +libsemanage-2.1.9.ebuild: - Introduce new upstream version - - 26 Jun 2012; Mike Gilbert libsemanage-2.1.6-r2.ebuild, - libsemanage-2.1.6.ebuild: - Restrict pypy per Arfrever. - -*libsemanage-2.1.6-r2 (25 Jun 2012) - - 25 Jun 2012; +libsemanage-2.1.6-r2.ebuild: - Fix python3 support - - 13 May 2012; -libsemanage-2.1.0.ebuild: - Removing obsoleted ebuild - - 29 Apr 2012; libsemanage-2.1.6.ebuild: - Stabilization - - 05 Apr 2012; libsemanage-2.1.0.ebuild, - libsemanage-2.1.6.ebuild: - Depending on swig-2.0.4-r1 to fix build failures as per bug #409959 - -*libsemanage-2.1.6 (31 Mar 2012) - - 31 Mar 2012; +libsemanage-2.1.6.ebuild: - Bump to version 2.1.6 - - 12 Nov 2011; -libsemanage-2.0.45.ebuild, - -libsemanage-2.0.46.ebuild: - Remove deprecated ebuilds - - 23 Oct 2011; libsemanage-2.1.0.ebuild: - Stabilization (tracker #384231) - - 17 Sep 2011; libsemanage-2.0.45.ebuild, - libsemanage-2.0.46.ebuild: - Adding dependencies on bison and flex as per bug #382583 - - 17 Sep 2011; libsemanage-2.1.0.ebuild: - Add dependency for flex and bison - - 12 Aug 2011; Anthony G. Basile ChangeLog: - Fix failed gpg signing of Manifest - - 12 Aug 2011; Anthony G. Basile - -libsemanage-2.0.27.ebuild, -libsemanage-2.0.33.ebuild, - -libsemanage-2.0.33-r1.ebuild, -files/libsemanage-2.0.33-bzip.diff: - Removed deprecated versions - -*libsemanage-2.1.0 (03 Aug 2011) - - 03 Aug 2011; Anthony G. Basile - +libsemanage-2.1.0.ebuild: - Bump to 20110727 SELinux userspace release - -*libsemanage-2.0.46 (15 Jul 2011) - - 15 Jul 2011; Anthony G. Basile - +libsemanage-2.0.46.ebuild: - Bump to 2.0.46 - proxy for SwifT - - 30 Jun 2011; Anthony G. Basile - libsemanage-2.0.45.ebuild: - Only build libsemanage for python-2, fixes bug #369089 - - 28 May 2011; Anthony G. Basile - libsemanage-2.0.27.ebuild, libsemanage-2.0.33.ebuild: - Make RDEPEND explicit - - 28 May 2011; Anthony G. Basile - libsemanage-2.0.45.ebuild: - Stable amd64 x86 - - 13 Feb 2011; Anthony G. Basile metadata.xml: - Updated metadata.xml to reflect new selinux herd. - - 06 Feb 2011; Arfrever Frehtes Taifersar Arahesis - libsemanage-2.0.45.ebuild: - Add "python" and "ruby" USE flags. - - 05 Feb 2011; Arfrever Frehtes Taifersar Arahesis - libsemanage-2.0.45.ebuild: - Set SUPPORT_PYTHON_ABIS (bug #353764). Respect AR and CC. - -*libsemanage-2.0.45 (05 Feb 2011) - - 05 Feb 2011; Anthony G. Basile - +libsemanage-2.0.45.ebuild: - New upstream release. - - 16 Apr 2010; Arfrever Frehtes Taifersar Arahesis - libsemanage-2.0.27.ebuild, libsemanage-2.0.33.ebuild, - libsemanage-2.0.33-r1.ebuild: - Delete calls to deprecated python_version(). - -*libsemanage-2.0.33-r1 (24 Aug 2009) - - 24 Aug 2009; Chris PeBenito - +libsemanage-2.0.33-r1.ebuild, +files/libsemanage-2.0.33-bzip.diff: - Add patch to make bzip2 compression configurable. - - 03 Aug 2009; Chris PeBenito - libsemanage-2.0.33.ebuild: - Fix libsepol dependency. - - 02 Aug 2009; Chris PeBenito - libsemanage-2.0.27.ebuild, libsemanage-2.0.33.ebuild: - Add python_need_rebuild to libsemanage. - -*libsemanage-2.0.33 (02 Aug 2009) - - 02 Aug 2009; Chris PeBenito - +libsemanage-2.0.33.ebuild: - New upstream release. - - 18 Jul 2009; Chris PeBenito - -libsemanage-1.10.9.ebuild, libsemanage-2.0.27.ebuild: - Mark stable. Remove old ebuilds. - -*libsemanage-2.0.27 (03 Oct 2008) - - 03 Oct 2008; Chris PeBenito - +libsemanage-2.0.27.ebuild: - Initial commit of 2.0 libsemanage. - - 10 Sep 2008; Chris PeBenito - libsemanage-1.10.9.ebuild: - Tests cannot be run in the ebuild, they are supposed to be ran on the full - SELinux userland repo. - - 29 May 2008; Ali Polatel libsemanage-1.10.9.ebuild: - python_mod_optimize is ROOT aware. Fixed python_mod_cleanup. - - 26 May 2008; Chris PeBenito - libsemanage-1.10.9.ebuild: - Fix libsepol dependency. - - 13 May 2008; Chris PeBenito -libsemanage-1.4.ebuild, - -libsemanage-1.6.ebuild, -libsemanage-1.10.0.ebuild, - -libsemanage-1.10.5.ebuild, libsemanage-1.10.9.ebuild: - Mark 1.10.9 stable, clear old ebuilds. - -*libsemanage-1.10.9 (29 Jan 2008) - - 29 Jan 2008; Chris PeBenito - +libsemanage-1.10.9.ebuild: - New upstream bugfix release. - -*libsemanage-1.10.5 (18 Oct 2007) - - 18 Oct 2007; Chris PeBenito - +libsemanage-1.10.5.ebuild: - New upstream release. - - 04 Jun 2007; Chris PeBenito - libsemanage-1.10.0.ebuild: - Mark stable. - -*libsemanage-1.10.0 (15 Feb 2007) - - 15 Feb 2007; Chris PeBenito - +libsemanage-1.10.0.ebuild: - New upstream release. - - 09 Oct 2006; Chris PeBenito - libsemanage-1.6.17-r1.ebuild: - Stable to make repoman happy. - -*libsemanage-1.6.17-r1 (08 Oct 2006) - - 08 Oct 2006; Chris PeBenito - -libsemanage-1.6.17.ebuild, +libsemanage-1.6.17-r1.ebuild: - Install semanage.conf since this is masked on example policy-based profiles. - -*libsemanage-1.6.17 (05 Oct 2006) - - 05 Oct 2006; Chris PeBenito - +libsemanage-1.6.17.ebuild: - Add SVN snapshot. - - 31 Jul 2006; Chris PeBenito libsemanage-1.6.ebuild: - Mark stable, long overdue. - - 27 Apr 2006; Alec Warner - files/digest-libsemanage-1.4, Manifest: - Fixing SHA256 digest, pass four - -*libsemanage-1.6 (18 Mar 2006) - - 18 Mar 2006; Chris PeBenito +libsemanage-1.6.ebuild: - New upstream release. - - 22 Feb 2006; Stephen Bennett libsemanage-1.4.ebuild: - Alpha stable - - 19 Feb 2006; Joshua Kinard libsemanage-1.4.ebuild: - Marked stable on mips. - - 09 Feb 2006; Chris PeBenito libsemanage-1.4.ebuild: - Set python version to fix compiles on non 2.4 pythons. - - 17 Jan 2006; Chris PeBenito libsemanage-1.4.ebuild: - Mark stable, x86, amd64, ppc, sparc. - - 14 Jan 2006; Stephen Bennett libsemanage-1.4.ebuild: - Added ~alpha - - 15 Dec 2005; Chris PeBenito libsemanage-1.4.ebuild: - Tighten up versioning to try to prevent mismatch problems as seen in #112348. - -*libsemanage-1.4 (09 Dec 2005) - - 09 Dec 2005; Chris PeBenito +metadata.xml, - +libsemanage-1.4.ebuild: - Initial commit. diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/ChangeLog-2015 b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/ChangeLog-2015 new file mode 100644 index 0000000000..6900079b01 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/ChangeLog-2015 @@ -0,0 +1,414 @@ +# ChangeLog for sys-libs/libsemanage +# Copyright 1999-2015 Gentoo Foundation; Distributed under the GPL v2 +# $Header: /var/cvsroot/gentoo-x86/sys-libs/libsemanage/ChangeLog,v 1.94 2015/06/09 15:36:24 swift Exp $ + +*libsemanage-9999 (09 Jun 2015) + + 09 Jun 2015; Sven Vermeulen +libsemanage-9999.ebuild: + Adding libsemanage-9999 to better support upstream integrations + + 10 May 2015; Jason Zaman libsemanage-2.4-r1.ebuild: + stabilize selinux 2.4 userland + + 09 May 2015; Jason Zaman -libsemanage-2.4.ebuild: + drop broken + +*libsemanage-2.4-r1 (23 Apr 2015) + + 23 Apr 2015; Jason Zaman + +files/0001-libsemanage-do-not-copy-contexts-in-semanage_migrate.patch, + +libsemanage-2.4-r1.ebuild, + -files/0002-semanage_migrate_store-Python3-support.patch: + rev bump with migration patch + + 18 Apr 2015; Jason Zaman -libsemanage-2.3-r3.ebuild, + -libsemanage-2.4_rc6-r2.ebuild, -libsemanage-2.4_rc7.ebuild: + Drop old RCs + + 08 Apr 2015; Michał Górny libsemanage-2.2-r2.ebuild, + libsemanage-2.3-r3.ebuild, libsemanage-2.3-r4.ebuild, libsemanage-2.4.ebuild, + libsemanage-2.4_rc6-r2.ebuild, libsemanage-2.4_rc7.ebuild: + Drop old Python implementations + +*libsemanage-2.4 (04 Feb 2015) + + 04 Feb 2015; Jason Zaman +libsemanage-2.4.ebuild: + Version bump + + 26 Jan 2015; Agostino Sarubbo libsemanage-2.3-r4.ebuild: + Stable for x86, wrt bug #535684 + + 22 Jan 2015; Agostino Sarubbo libsemanage-2.3-r4.ebuild: + Stable for amd64, wrt bug #535684 + +*libsemanage-2.4_rc7 (06 Dec 2014) + + 06 Dec 2014; Jason Zaman +libsemanage-2.4_rc7.ebuild, + -libsemanage-2.3-r2.ebuild, -libsemanage-2.4_rc2.ebuild, + -libsemanage-2.4_rc5.ebuild, -libsemanage-2.4_rc6-r1.ebuild, + -libsemanage-2.4_rc6.ebuild: + version bump and ebuild clean up, drop old RC + +*libsemanage-2.3-r4 (04 Dec 2014) + + 04 Dec 2014; Jason Zaman +libsemanage-2.3-r4.ebuild, + libsemanage-2.4_rc6-r2.ebuild: + Call python_optimize, bug 531638 + +*libsemanage-2.4_rc6-r2 (27 Nov 2014) + + 27 Nov 2014; Sven Vermeulen +libsemanage-2.4_rc6-r2.ebuild: + Migrate store as soon as possible, but do not reload policy (bug 530864) + +*libsemanage-2.4_rc6-r1 (22 Nov 2014) + + 22 Nov 2014; Jason Zaman + +files/0002-semanage_migrate_store-Python3-support.patch, + +libsemanage-2.4_rc6-r1.ebuild: + python3 support for semanage_migrate_store. bug 529252 + +*libsemanage-2.4_rc6 (14 Nov 2014) + + 14 Nov 2014; Sven Vermeulen +libsemanage-2.4_rc6.ebuild: + Bump to rc6, add python3_4 to PYTHON_COMPAT (fixes bug 529176); rc6 also fixes + unconfined issue when USE=-unconfined is set + + 01 Nov 2014; Sven Vermeulen libsemanage-2.3-r3.ebuild: + Stabilize libsemanage-2.3-r3 (fix for bug #520608) + +*libsemanage-2.4_rc5 (29 Oct 2014) + + 29 Oct 2014; Sven Vermeulen +libsemanage-2.4_rc5.ebuild, + -libsemanage-2.4_rc4.ebuild: + Bump to 2.4_rc5 + +*libsemanage-2.4_rc4 (07 Oct 2014) + + 07 Oct 2014; Sven Vermeulen +libsemanage-2.4_rc4.ebuild: + Bump to 2.4-rc4 + +*libsemanage-2.4_rc2 (21 Sep 2014) + + 21 Sep 2014; Sven Vermeulen +libsemanage-2.4_rc2.ebuild, + libsemanage-2.3-r2.ebuild, libsemanage-2.3-r3.ebuild: + Noved to github; also add in masked 2.4 series + + 16 Sep 2014; Brian Dolbec libsemanage-2.3-r3.ebuild: + Add python-3.4 target. Tested and confirmed working by perfinion. + +*libsemanage-2.3-r3 (23 Aug 2014) + + 23 Aug 2014; Sven Vermeulen +libsemanage-2.3-r3.ebuild: + Fix bug #520608 - Install .so in correct multilib location + + 05 Aug 2014; Sven Vermeulen -libsemanage-2.2.ebuild, + -libsemanage-2.3-r1.ebuild, -libsemanage-2.3.ebuild: + Remove obsoleted ebuilds + + 05 Aug 2014; Sven Vermeulen libsemanage-2.2-r2.ebuild: + Stabilize latest libsemanage-2.2 + + 30 Jul 2014; Sven Vermeulen libsemanage-2.3-r2.ebuild: + Fix bug #514194 - Stabilization of SELinux userspace 2.3 + + 18 Jun 2014; Michał Górny libsemanage-2.3-r2.ebuild: + Update dependencies to require guaranteed EAPI=5 or multilib ebuilds, bug + #513718. + +*libsemanage-2.3-r2 (02 Jun 2014) + + 02 Jun 2014; Sven Vermeulen +libsemanage-2.3-r2.ebuild: + Update multilib support in libsemanage with thanks to Arfrever + +*libsemanage-2.3-r1 (01 Jun 2014) + + 01 Jun 2014; Sven Vermeulen +libsemanage-2.3-r1.ebuild: + Fixing multilib support (bug #506460) with thanks to Sven Eden. Package has + dep on audit-2.2.2 which is p.masked so added same package to p.mask combo + + 10 May 2014; Sven Vermeulen -libsemanage-2.1.10.ebuild, + -libsemanage-2.2-r1.ebuild, -libsemanage-2.3_rc1.ebuild: + Spring cleanup + +*libsemanage-2.3 (09 May 2014) + + 09 May 2014; Sven Vermeulen +libsemanage-2.3.ebuild: + Bump to 2.3 + +*libsemanage-2.3_rc1 (28 Apr 2014) + + 28 Apr 2014; Sven Vermeulen +libsemanage-2.3_rc1.ebuild: + 2.3-rc1 release + +*libsemanage-2.2-r2 (23 Mar 2014) + + 23 Mar 2014; Sven Vermeulen +libsemanage-2.2-r2.ebuild: + Fix bug #502078 - have SHLIBS use PREFIX, not DESTDIR + + 02 Feb 2014; Sven Vermeulen +libsemanage-2.2-r1.ebuild: + Support multilib + +*libsemanage-2.2-r1 (02 Feb 2014) + + 02 Feb 2014; Sven Vermeulen +libsemanage-2.2-r1.ebuild: + Removing ruby support for libsemanage for now (libselinux has it removed as + we) + + 01 Feb 2014; Sven Vermeulen libsemanage-2.2.ebuild: + Adding python3_3 to supported Pythons, see bug #499606 + + 20 Jan 2014; Sven Vermeulen libsemanage-2.2.ebuild: + Fix bug #497754 - Add in dep on virtual/pgkconfig + + 20 Jan 2014; Sven Vermeulen libsemanage-2.2.ebuild: + Stabilize for amd64 and x86 + + 23 Dec 2013; Sven Vermeulen -libsemanage-2.1.9.ebuild: + Cleanup old version + + 10 Nov 2013; Sven Vermeulen libsemanage-2.2.ebuild: + Adding dependency to audit (bug #490488) + +*libsemanage-2.2 (04 Nov 2013) + + 04 Nov 2013; Sven Vermeulen +libsemanage-2.2.ebuild: + New libsemanage release + + 07 Jul 2013; Sven Vermeulen -libsemanage-2.1.6.ebuild, + -libsemanage-2.1.6-r2.ebuild: + Summer cleaning + + 16 Jun 2013; Sven Vermeulen libsemanage-2.1.10.ebuild: + Stabilization + +*libsemanage-2.1.10 (25 Apr 2013) + + 25 Apr 2013; Sven Vermeulen +libsemanage-2.1.10.ebuild: + New upstream release + + 07 Feb 2013; Sven Vermeulen libsemanage-2.1.9.ebuild: + Python 2.6 is not supported with libsemanage, see bug #445216 + + 17 Nov 2012; libsemanage-2.1.9.ebuild: + Stabilization + + 13 Oct 2012; libsemanage-2.1.9.ebuild: + Supporting user-provided patches using epatch_user + +*libsemanage-2.1.9 (09 Oct 2012) + + 09 Oct 2012; +libsemanage-2.1.9.ebuild: + Introduce new upstream version + + 26 Jun 2012; Mike Gilbert libsemanage-2.1.6-r2.ebuild, + libsemanage-2.1.6.ebuild: + Restrict pypy per Arfrever. + +*libsemanage-2.1.6-r2 (25 Jun 2012) + + 25 Jun 2012; +libsemanage-2.1.6-r2.ebuild: + Fix python3 support + + 13 May 2012; -libsemanage-2.1.0.ebuild: + Removing obsoleted ebuild + + 29 Apr 2012; libsemanage-2.1.6.ebuild: + Stabilization + + 05 Apr 2012; libsemanage-2.1.0.ebuild, + libsemanage-2.1.6.ebuild: + Depending on swig-2.0.4-r1 to fix build failures as per bug #409959 + +*libsemanage-2.1.6 (31 Mar 2012) + + 31 Mar 2012; +libsemanage-2.1.6.ebuild: + Bump to version 2.1.6 + + 12 Nov 2011; -libsemanage-2.0.45.ebuild, + -libsemanage-2.0.46.ebuild: + Remove deprecated ebuilds + + 23 Oct 2011; libsemanage-2.1.0.ebuild: + Stabilization (tracker #384231) + + 17 Sep 2011; libsemanage-2.0.45.ebuild, + libsemanage-2.0.46.ebuild: + Adding dependencies on bison and flex as per bug #382583 + + 17 Sep 2011; libsemanage-2.1.0.ebuild: + Add dependency for flex and bison + + 12 Aug 2011; Anthony G. Basile ChangeLog: + Fix failed gpg signing of Manifest + + 12 Aug 2011; Anthony G. Basile + -libsemanage-2.0.27.ebuild, -libsemanage-2.0.33.ebuild, + -libsemanage-2.0.33-r1.ebuild, -files/libsemanage-2.0.33-bzip.diff: + Removed deprecated versions + +*libsemanage-2.1.0 (03 Aug 2011) + + 03 Aug 2011; Anthony G. Basile + +libsemanage-2.1.0.ebuild: + Bump to 20110727 SELinux userspace release + +*libsemanage-2.0.46 (15 Jul 2011) + + 15 Jul 2011; Anthony G. Basile + +libsemanage-2.0.46.ebuild: + Bump to 2.0.46 - proxy for SwifT + + 30 Jun 2011; Anthony G. Basile + libsemanage-2.0.45.ebuild: + Only build libsemanage for python-2, fixes bug #369089 + + 28 May 2011; Anthony G. Basile + libsemanage-2.0.27.ebuild, libsemanage-2.0.33.ebuild: + Make RDEPEND explicit + + 28 May 2011; Anthony G. Basile + libsemanage-2.0.45.ebuild: + Stable amd64 x86 + + 13 Feb 2011; Anthony G. Basile metadata.xml: + Updated metadata.xml to reflect new selinux herd. + + 06 Feb 2011; Arfrever Frehtes Taifersar Arahesis + libsemanage-2.0.45.ebuild: + Add "python" and "ruby" USE flags. + + 05 Feb 2011; Arfrever Frehtes Taifersar Arahesis + libsemanage-2.0.45.ebuild: + Set SUPPORT_PYTHON_ABIS (bug #353764). Respect AR and CC. + +*libsemanage-2.0.45 (05 Feb 2011) + + 05 Feb 2011; Anthony G. Basile + +libsemanage-2.0.45.ebuild: + New upstream release. + + 16 Apr 2010; Arfrever Frehtes Taifersar Arahesis + libsemanage-2.0.27.ebuild, libsemanage-2.0.33.ebuild, + libsemanage-2.0.33-r1.ebuild: + Delete calls to deprecated python_version(). + +*libsemanage-2.0.33-r1 (24 Aug 2009) + + 24 Aug 2009; Chris PeBenito + +libsemanage-2.0.33-r1.ebuild, +files/libsemanage-2.0.33-bzip.diff: + Add patch to make bzip2 compression configurable. + + 03 Aug 2009; Chris PeBenito + libsemanage-2.0.33.ebuild: + Fix libsepol dependency. + + 02 Aug 2009; Chris PeBenito + libsemanage-2.0.27.ebuild, libsemanage-2.0.33.ebuild: + Add python_need_rebuild to libsemanage. + +*libsemanage-2.0.33 (02 Aug 2009) + + 02 Aug 2009; Chris PeBenito + +libsemanage-2.0.33.ebuild: + New upstream release. + + 18 Jul 2009; Chris PeBenito + -libsemanage-1.10.9.ebuild, libsemanage-2.0.27.ebuild: + Mark stable. Remove old ebuilds. + +*libsemanage-2.0.27 (03 Oct 2008) + + 03 Oct 2008; Chris PeBenito + +libsemanage-2.0.27.ebuild: + Initial commit of 2.0 libsemanage. + + 10 Sep 2008; Chris PeBenito + libsemanage-1.10.9.ebuild: + Tests cannot be run in the ebuild, they are supposed to be ran on the full + SELinux userland repo. + + 29 May 2008; Ali Polatel libsemanage-1.10.9.ebuild: + python_mod_optimize is ROOT aware. Fixed python_mod_cleanup. + + 26 May 2008; Chris PeBenito + libsemanage-1.10.9.ebuild: + Fix libsepol dependency. + + 13 May 2008; Chris PeBenito -libsemanage-1.4.ebuild, + -libsemanage-1.6.ebuild, -libsemanage-1.10.0.ebuild, + -libsemanage-1.10.5.ebuild, libsemanage-1.10.9.ebuild: + Mark 1.10.9 stable, clear old ebuilds. + +*libsemanage-1.10.9 (29 Jan 2008) + + 29 Jan 2008; Chris PeBenito + +libsemanage-1.10.9.ebuild: + New upstream bugfix release. + +*libsemanage-1.10.5 (18 Oct 2007) + + 18 Oct 2007; Chris PeBenito + +libsemanage-1.10.5.ebuild: + New upstream release. + + 04 Jun 2007; Chris PeBenito + libsemanage-1.10.0.ebuild: + Mark stable. + +*libsemanage-1.10.0 (15 Feb 2007) + + 15 Feb 2007; Chris PeBenito + +libsemanage-1.10.0.ebuild: + New upstream release. + + 09 Oct 2006; Chris PeBenito + libsemanage-1.6.17-r1.ebuild: + Stable to make repoman happy. + +*libsemanage-1.6.17-r1 (08 Oct 2006) + + 08 Oct 2006; Chris PeBenito + -libsemanage-1.6.17.ebuild, +libsemanage-1.6.17-r1.ebuild: + Install semanage.conf since this is masked on example policy-based profiles. + +*libsemanage-1.6.17 (05 Oct 2006) + + 05 Oct 2006; Chris PeBenito + +libsemanage-1.6.17.ebuild: + Add SVN snapshot. + + 31 Jul 2006; Chris PeBenito libsemanage-1.6.ebuild: + Mark stable, long overdue. + + 27 Apr 2006; Alec Warner + files/digest-libsemanage-1.4, Manifest: + Fixing SHA256 digest, pass four + +*libsemanage-1.6 (18 Mar 2006) + + 18 Mar 2006; Chris PeBenito +libsemanage-1.6.ebuild: + New upstream release. + + 22 Feb 2006; Stephen Bennett libsemanage-1.4.ebuild: + Alpha stable + + 19 Feb 2006; Joshua Kinard libsemanage-1.4.ebuild: + Marked stable on mips. + + 09 Feb 2006; Chris PeBenito libsemanage-1.4.ebuild: + Set python version to fix compiles on non 2.4 pythons. + + 17 Jan 2006; Chris PeBenito libsemanage-1.4.ebuild: + Mark stable, x86, amd64, ppc, sparc. + + 14 Jan 2006; Stephen Bennett libsemanage-1.4.ebuild: + Added ~alpha + + 15 Dec 2005; Chris PeBenito libsemanage-1.4.ebuild: + Tighten up versioning to try to prevent mismatch problems as seen in #112348. + +*libsemanage-1.4 (09 Dec 2005) + + 09 Dec 2005; Chris PeBenito +metadata.xml, + +libsemanage-1.4.ebuild: + Initial commit. diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/Manifest b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/Manifest index 0518f50f1d..42db8b3e39 100644 --- a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/Manifest +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/Manifest @@ -1,32 +1,17 @@ ------BEGIN PGP SIGNED MESSAGE----- -Hash: SHA512 - AUX 0001-libsemanage-do-not-copy-contexts-in-semanage_migrate.patch 7190 SHA256 5746fe5b4f85bb2ca4fdd50b29de98a8561c6a88e66dfb067c3e393eb1399b4d SHA512 ad9923ccad7a0d975b850eaeb5a801b3f933c0a26112226fa19112dd8aa07de9766845dfec44680799a577175c3a564e9c222f7b0968871fd1f69c3140ab569b WHIRLPOOL dda70c907d5ec766886f08e43da0a417ac67652f1682e629c06ce175f37d3db63e9ab257874435a26f4bc1ae7436421a5414b89b997f181a4ff9fe6434c77a2d +AUX 0002-libsemanage-Add-policy-binary-and-file_contexts.loca.patch 11042 SHA256 2b8cac510621efcfeacc0f59d89cd471b9b248d2d9fe455bcf9b9af2a94e9fb8 SHA512 6537ea1d3d9eee3882b26e29271068a72a0c0e7812ac85393e95164a71fb94e441fcd5e49020470ee5e5f8e308ecfe8d66abf0cd3f956124a4692312d50807b3 WHIRLPOOL 3bb3c108ea673b80704ed957f774c71a6ae6239595f2387abfee8c7612b79d8be94aad9431aced93d655c3402149109dbb9faf0d2df534b5b67f5cfa7ad63176 +AUX 0003-libsemanage-Add-file_contexts-and-seusers-to-the-sto.patch 8839 SHA256 3ec6094a5395774ee737400698bbccf49ab6cc48999b37765de0565e78006534 SHA512 5b597efb663a1c1b736a6da43b29831bd49ae59be60939691c16d2a167730b809f9b61d25ac36e29faa97dd4efeaa8b2ea9189f8afecf3a7a8eb8289ca892b9f WHIRLPOOL 7d675e98c7e2ecea1c4ec40ccbd8f90970b282b969cf1786fdff84007b4c987e13adff42705c4a5bb6a3b7906acae785335c6d50fd1192860a6f71a82445b610 +AUX 0004-libsemanage-save-homedir_template-in-the-policy-stor.patch 2163 SHA256 0491b38cd5c31b204e46459527e35d94827e7c787eefe76daf6096b2989abd70 SHA512 ca844ad1720868ab695a365a9cd3e0c18bc47366761719c7fbbfd154cd40d0652a86d4f11eceb231ce855825c844f37b23afd2f6ffb0d2403ee33e9945a24aac WHIRLPOOL 77601baba57c58c9da52544753e58f19ba11f3aeb7edbeec7c475d7bf626044d7e09b3cb1bcc62bfbf648fe8a41dac58452dc1a82dc0e271351e3ac17cac7385 +AUX 0005-libsemanage-store-users_extra-in-the-policy-store.patch 2057 SHA256 f8fc94ca7cf650093e0197359a450dfd8d79fdae45f6158504ea6f50b417abe1 SHA512 be33c38bea905209ab32da082711a25ffe07fbf3de22167a16582b2527526099449c466e340de4c3a56959d68ebf6db676382bd392698f672d7cbc5d3d3d211c WHIRLPOOL a8c64b41f299cbe5791f747bbda50d4d2246af733cf9bac34ab285b4ca50dfbd7c54f23675e01e02120562bb0cd1573df254d09ad0cfb1b35a2637f06e18d5af +AUX libsemanage-2.4-build-paths.patch 1322 SHA256 2c0b7a433b450a1af1fe700be31b64add02694fb5b850dcee859a140320be697 SHA512 dc667b90503847702c80e456549c2d4f94b6e4aa56d0babcb15dfd16a8f0f77db6807858eb8ddd204af8856bdcff0e34fb23f77f88b37a02f74f823d97dafb61 WHIRLPOOL 8fc48dc15f123d5001b5ee96be8b86a9c28f55d682db4d4aa495ccd1c3edf5774b318fa93036024fb1bed7d10c7cfa52cbbf7c4ea70d854a177d487a3478212b DIST libsemanage-2.2.tar.gz 138208 SHA256 11f60bfa0f1c6063cd9bd99ce0cb4acc9d6d9e9b8d7743d39e847bcd7803bd75 SHA512 09032b1b322fec7346164939ade118034812cb538ebc72121640d4ac5c89d2a66b59caa465027cfbebb590dee039a26d4345eafedf365d7f6ad0b5e90377d50f WHIRLPOOL 49170c5ee9ff57dcc4a15aa72386f37993f76436f0da25808c60dab2d03ba52932d0d4fa753c326900d83d2fae30f8bcf659251f17327783f2e2be3deb4842f4 DIST libsemanage-2.3.tar.gz 138231 SHA256 03e09e35e611c286e446bef92b6023ef2623815996f5a53394bb02e49a312e4b SHA512 defe3bbdbe51abdaa13a39f693c33446d8a1a8509ac1eb25c7770da2df6487bcb0ca31259d02b4531d4c81db5e221e94e95bec97f6a1a155e1de2f65e6f0da34 WHIRLPOOL 943d4d300aa8ad49c411b10b41c0c3e751c46dbcbbe129bdd1d2e975e231c58391d6ecdee6b27699fff9f6e6facf5b48fc8d57c2ff68692694c7de430750fac9 DIST libsemanage-2.4.tar.gz 151173 SHA256 1a4cace4ef16786531ec075c0e7b2f961e2fee5dc86c5f983a689058899a6484 SHA512 54f993253b22207b053daf4d34e72c65c72279866416089b6c0f047ef77bca3e307eac0ce6dfe40bd14e2e47e79841b358d5607501779f38d9b5f7c35f3b7729 WHIRLPOOL 7303c06515ed59b5756a87d08aff07671e51d26ce9fa452ca75643dd0ce4658571dc69d86434c943d691a4ab0d90cbdccdaa27e5aaec5fdf8057cf2d5d30631e -EBUILD libsemanage-2.2-r2.ebuild 3201 SHA256 39aa38de07e4b04b7f200a5abcfbc3a4dc033063c4adcb51813486d26f82c1cf SHA512 f1186f33e4685c0b6403e001db853ce845940f2332fc9b389e3fa96c5ff0762bcdc1ec22caacf12e5045d946fdb6c611b29b7ec1807bff72df93935fa7063a75 WHIRLPOOL 4715e92f0be45cbfb58e3a44bc8c1a1e69f6f66a803d816a4975d5be596f5f2dbfe8f3d95499475b7c0090cbe22e0359dcd1c895b8be619440463e638da16871 -EBUILD libsemanage-2.3-r4.ebuild 3560 SHA256 e8ccb383ae811fdef8e12f8459a11618269b658b591dd4d57d7537021e361d26 SHA512 dda74556b122d354979db9c5c4883479e56f49e5a2c48a4cd70f112fa22f41daaa75bad63d2a0a94672d17fecf63cc0b6a8dc48d58e0908e851bb98b346036a5 WHIRLPOOL 7b0716d3604b6db85818734c6a148485a8bc3aa0b76f1172e1520dbc5294e75ed8d83cc97c065c9e6cc54b6b22e01ea3cbb094f1e39514208f5fc69ca831f781 -EBUILD libsemanage-2.4-r1.ebuild 4678 SHA256 298fc28320dc183d2dda92faa65c070c73b42bf3a91d40c87438a6963a7e1d8a SHA512 abaad53d8b690d7554771fbba5fd540629aab1ae0d0280d753015a951117ec02315764d6fa098d335bf91eb2f9622dea9d7df0305aceab1e233c7ec118534139 WHIRLPOOL 83f3156d63381f8daacb36cd52e12e3ca6bcb31597ffda33a8b1588813b6f9210458e5a5b8641790bb69f58e23fefa34a36ce995799118f22f63c7b26a68eaff -EBUILD libsemanage-9999.ebuild 4949 SHA256 f07183cfa81eeaa9b4c4cd747e9107cf85e15aa2562b4cbff0d886c33574f409 SHA512 991b0c068749f3e50c31ad417b69def8f0db8cdfb8126bb78419ec5053946c9b14ae27496d517be7f30a59d9616ffbe7b2338f3008e67646f4f610ef4edb889d WHIRLPOOL ceaaf2ffeaa88d3c74472b1baf1b22811aa0038f786c891c7ba68761ec7f978bd51718b0ff01da5ea8ba4a54566563c8d52afb33717a12575c6e189f61aa56d4 -MISC ChangeLog 13938 SHA256 d7938bb036a37dc37a0d2654be04c655b30cf54cb8c4f019e4f6549ffe3179da SHA512 e006775684003b4a7bd9e77f9fdf173bc1402e3cf05aad684b2e31c1942e8d2a268e7ffa19164a94e04e07f7977c1fdefbaaabf021f4ea4e6e8e8e463f69be3c WHIRLPOOL e87415fff3ee0136db7905a45881fdeed6a46b5dbbbf487fc62adba321a99f747f4eb5c549feb8093ffa22bc8369a60e5370638674a4db2c0aa2a4c020cf4230 -MISC metadata.xml 320 SHA256 b26802e71a0f815c4dadc9ec5122bf91ee5007bdd3f508908fb06fb489148ecb SHA512 80b83887b0eb131738dafdc65ba16bdf17793381fe23956ae44393d63333d22c1a45a5ceb8d4ee993825fa06e873e6bdf35f80996951f11924f09ddc28fba43b WHIRLPOOL 0b6f26f333782f25a6cc069dfb5df7bbd63cb9574a1ac29dce9abbd82aee2be4ba6a1146a346402d4e21854f664e9ef70986155d3782c7a9bf25b3a4da853d77 ------BEGIN PGP SIGNATURE----- -Version: GnuPG v2.0 - -iQJ8BAEBCgBmBQJVfyv1XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w -ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ0QUU0N0I4NzFERUI0MTJFN0EyODE0NUFF -OTQwMkE3OUIwMzUyOUEyAAoJEOlAKnmwNSmiKIcP/iRf32q/kLkjP5VU9lilQKEq -1en9EqcxYrT9Vcy0gaCg2fcsLbFZCSGug68iEkGVsE+xHyG956Yx5nttjeRqJquq -dqJi39wZkXAolr7pbdjmygZLHhOLmzzmg+ypxH45yFvxNEnc3o9Uc1LR8el/cbvC -1zM3cEbOxVVt+VuM9rUzcobSNIL9VHYUw8PU1rDenUXtR92z82I+Y3bIoYHkPm7N -wQYNo9XT2PoiOehlmMIYz4+SLeQa3VrWNhKq8JteZ7eBRxkgYYd1ao6b+zFkAiVD -iz3teuEDvVadr6UWYffYFTMbrak+E8WJE5CjTDrRlyFvJAGEA51h0KnXG5rkZU8I -8pHazXVed1gykS5WJf3mMcMXKwh7UhnpxkkrzFCsX57+LtoxBNyBnVVQDJ/NKj8E -obo05qmba68tnN9LkJwGruBzhBEGHoDwwF9yZ7Qork/6WP+7bW5SKCw+/1v87L3Z -67a8CMAxrjIY4eLhsJbh7KYHeLJNyDqw9X/6BbVwSTPfoQlw4aRzd13B1msVWwhK -eiFYV044z7wmeGfrwO8mxfyNDeQhhCbXPWiup10hlXAEmmMwBqYE8TCSbev88Rd7 -JS0MjXXgTaJPWqaJq0MtwNNQpXChPuuqFVkvK6eEZFmN+M/1aCLh0DXJy/3zLxDA -Rc5mnjkZUYqL7sMxXTDs -=1PJr ------END PGP SIGNATURE----- +EBUILD libsemanage-2.2-r2.ebuild 3087 SHA256 220e52e62caa7cc9e471c9138f2fa323824948a661f27af7ab2df28303cd1595 SHA512 3c77b723a72eae33084ef2205d368707f77479889df640fb4de0b41edd5aaa13d19f7180bc058fb5dc89d86475ef9b896396741a51365c2cba889a90f767ee5d WHIRLPOOL 78195b55c58444efb4d31204cd8e6fc6fdaafc70929cff4921c6927256986aba0f213abd9210b56dd04158f1f88ae514dc5bc3beb1fb09aa3e380b50730beb55 +EBUILD libsemanage-2.3-r4.ebuild 3446 SHA256 aab0dcacf8b625fe3c8911ff25a730668e5c0eaa0f81480a8002e739b235be46 SHA512 c9ee98a0f09ae07fa6cc7303125fa9238652b44a18a46f1c0a90a0030a83cbfb11b82a6a6bcd7e1187bcbac447d8cff3289e6e0ceaf0543f67e22a4ceed33383 WHIRLPOOL 0c1cae9d29af978acaef1316e5b7c5f369d6f5631fb3d8de44f68e7cf2a7da732f1cf749b3009b7dcb4f488e650b61d8e9fd8019c0c602b1262dea81fa199707 +EBUILD libsemanage-2.4-r1.ebuild 4561 SHA256 1dcb6f99c02dde224171c0ced2e4396b61489fd007c2ef02ac2a3dbe2cf29be2 SHA512 edd3612e2f26fc26dcad3e55736ff9c769875c6f3e83fc361b6c7d993698875523970bc7b15749c5f1223d7228c4067b92249d02e705f7affcac77a8547e216d WHIRLPOOL a9c7eb7e2d9ade49be9fb37d8dc4748265632f2ac7e0309366e42f0c30973c4100f66339a041aecaee2595bf9bd6cc73c5287955058ef01151a31d090aa755a8 +EBUILD libsemanage-2.4-r2.ebuild 4986 SHA256 7a3b685213f8862a583904dad20d5111ffdde327e71be07439f52a39e465bcfc SHA512 c72cda7c1e450ff4f5f7f1f61a44fc15db13d45ebd4941ad66d4cfb2b5ba0a5cd77e51ee2848e5876d5cb598fbd1e45a1cd72b67b2a276447fa44060da2fd0b9 WHIRLPOOL 68163b67c7933cf54aa959f0453921020ff098c6023220ec5198589aa12af001ccb17b19efa0b3b864fdb326c25b3003f126b980e3bbb82b112bce846e1c1d92 +EBUILD libsemanage-9999.ebuild 4938 SHA256 d55d959b381ce0a455bf2acaea8de1e02c3c3205827be866d7429b0a25c30b76 SHA512 9aea270542082fa5f4bddc3d334b28b4e176fec25c20b5aca4c55c5fcbec0f4c0fb491afee0a7e70d5560a184b9d0e1bc853a6feb9c0cc73e145d67da0e81c68 WHIRLPOOL 164192695ec874d7f5de3a7cc8d3ae03186033508023aa9dc0bd670307f75a2de3ac9c3d1e4acbaa47c505939a5612227a8643ad4810f16371cfe0d4964305dc +MISC ChangeLog 3845 SHA256 e5844bbeed53d655be76d3fbb7f53090e8506f01a20df0e27ef152cd5903a2cc SHA512 9fc9fe8974752bc7ad4e5738ce3c412b2eaeb9f8fd6f12d24306d46dafa1b3cc653c6eccae84aaa6b647618401da5f7be6660330a23f3ec84754687432fe67e9 WHIRLPOOL 1a355df35f1979007dea881b8ba4a0d3cfbe5c73e2d4c3d4aeb8cbc4f08af861327abde728fdd2c885d0c6510bfa6749fd623b350340417ecfc93c078ce4f413 +MISC ChangeLog-2015 13938 SHA256 d7938bb036a37dc37a0d2654be04c655b30cf54cb8c4f019e4f6549ffe3179da SHA512 e006775684003b4a7bd9e77f9fdf173bc1402e3cf05aad684b2e31c1942e8d2a268e7ffa19164a94e04e07f7977c1fdefbaaabf021f4ea4e6e8e8e463f69be3c WHIRLPOOL e87415fff3ee0136db7905a45881fdeed6a46b5dbbbf487fc62adba321a99f747f4eb5c549feb8093ffa22bc8369a60e5370638674a4db2c0aa2a4c020cf4230 +MISC metadata.xml 406 SHA256 0209a41b2fe792b837de815e5e6b2a34fd06890b015a0cb578961d4c63b50381 SHA512 742aba47cdd9ad8f97fcb03a01cc2552c6e1d715f6b717c9dff2ae86ab34b850745888e4f2e3963ec2c258cf16a33cb161205f4ea72563446eada82f6c298479 WHIRLPOOL e00029ce45c8ffa5247ab3a4bcd7afc3f36e4d4a61038ec2075bba0e984cbe6a68a2ffe79a7aee9b3954bbabce5c985376889ce9187613f32bf898bb3300a59b diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0002-libsemanage-Add-policy-binary-and-file_contexts.loca.patch b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0002-libsemanage-Add-policy-binary-and-file_contexts.loca.patch new file mode 100644 index 0000000000..e5e821e697 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0002-libsemanage-Add-policy-binary-and-file_contexts.loca.patch @@ -0,0 +1,318 @@ +From 9638af24a1e890d673549f0b25d854458e07032e Mon Sep 17 00:00:00 2001 +From: Yuli Khodorkovskiy +Date: Thu, 2 Jul 2015 09:27:36 -0400 +Subject: [PATCH] libsemanage: Add policy binary and file_contexts.local to the + store + +This patch writes policy.kern and file_contexts.local to the policy store as +well as /etc/selinux/. Additionally, policy.kern and file_contexts.local +are now parsed from the store rather than the final directory which was +the old behavior. This allows all policy related files to be kept in the +policy store. + +This patch also renames /var/lib/selinux/tmp to 'final' and changes +policy.kern in the store to longer be a symlink. + +Signed-off-by: Yuli Khodorkovskiy +--- + libsemanage/src/booleans_policydb.c | 6 ++-- + libsemanage/src/direct_api.c | 33 +++++++++++++++---- + libsemanage/src/interfaces_policydb.c | 6 ++-- + libsemanage/src/nodes_policydb.c | 6 ++-- + libsemanage/src/ports_policydb.c | 6 ++-- + libsemanage/src/semanage_store.c | 55 ++++++++++++++++++++++++-------- + libsemanage/src/semanage_store.h | 5 +++ + libsemanage/src/users_base_policydb.c | 6 ++-- + libsemanage/utils/semanage_migrate_store | 3 +- + 9 files changed, 86 insertions(+), 40 deletions(-) + +diff --git a/libsemanage/src/booleans_policydb.c b/libsemanage/src/booleans_policydb.c +index 74af2a3..6869d6c 100644 +--- a/libsemanage/src/booleans_policydb.c ++++ b/libsemanage/src/booleans_policydb.c +@@ -55,10 +55,8 @@ int bool_policydb_dbase_init(semanage_handle_t * handle, + { + + if (dbase_policydb_init(handle, +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_KERNEL), +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_KERNEL), ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_KERNEL), ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL), + &SEMANAGE_BOOL_RTABLE, + &SEMANAGE_BOOL_POLICYDB_RTABLE, + &dconfig->dbase) < 0) +diff --git a/libsemanage/src/direct_api.c b/libsemanage/src/direct_api.c +index d57f934..3c6b168 100644 +--- a/libsemanage/src/direct_api.c ++++ b/libsemanage/src/direct_api.c +@@ -196,10 +196,8 @@ int semanage_direct_connect(semanage_handle_t * sh) + goto err; + + if (fcontext_file_dbase_init(sh, +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_FC_LOCAL), +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_FC_LOCAL), ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_FC_LOCAL), ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC_LOCAL), + semanage_fcontext_dbase_local(sh)) < 0) + goto err; + +@@ -1041,7 +1039,7 @@ static int semanage_direct_commit(semanage_handle_t * sh) + size_t fc_buffer_len = 0; + const char *ofilename = NULL; + const char *path; +- int retval = -1, num_modinfos = 0, i; ++ int retval = -1, num_modinfos = 0, i, missing_policy_kern = 0; + sepol_policydb_t *out = NULL; + struct cil_db *cildb = NULL; + semanage_module_info_t *modinfos = NULL; +@@ -1143,8 +1141,20 @@ static int semanage_direct_commit(semanage_handle_t * sh) + modified |= dontaudit_modified; + modified |= preserve_tunables_modified; + ++ /* This is for systems that have already migrated with an older version ++ * of semanage_migrate_store. The older version did not copy policy.kern so ++ * the policy binary must be rebuilt here. ++ */ ++ if (!sh->do_rebuild && !modified) { ++ path = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL); ++ ++ if (access(path, F_OK) != 0) { ++ missing_policy_kern = 1; ++ } ++ } ++ + /* If there were policy changes, or explicitly requested, rebuild the policy */ +- if (sh->do_rebuild || modified) { ++ if (sh->do_rebuild || modified || missing_policy_kern) { + /* =================== Module expansion =============== */ + + retval = semanage_get_active_modules(sh, &modinfos, &num_modinfos); +@@ -1302,6 +1312,17 @@ static int semanage_direct_commit(semanage_handle_t * sh) + if (retval < 0) + goto cleanup; + ++ retval = semanage_copy_policydb(sh); ++ if (retval < 0) ++ goto cleanup; ++ ++ path = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC_LOCAL); ++ if (access(path, F_OK) == 0) { ++ retval = semanage_copy_fc_local(sh); ++ if (retval < 0) ++ goto cleanup; ++ } ++ + /* run genhomedircon if its enabled, this should be the last operation + * which requires the out policydb */ + if (!sh->conf->disable_genhomedircon) { +diff --git a/libsemanage/src/interfaces_policydb.c b/libsemanage/src/interfaces_policydb.c +index 6a42eed..552ce7d 100644 +--- a/libsemanage/src/interfaces_policydb.c ++++ b/libsemanage/src/interfaces_policydb.c +@@ -51,10 +51,8 @@ int iface_policydb_dbase_init(semanage_handle_t * handle, + { + + if (dbase_policydb_init(handle, +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_KERNEL), +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_KERNEL), ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_KERNEL), ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL), + &SEMANAGE_IFACE_RTABLE, + &SEMANAGE_IFACE_POLICYDB_RTABLE, + &dconfig->dbase) < 0) +diff --git a/libsemanage/src/nodes_policydb.c b/libsemanage/src/nodes_policydb.c +index 56012fb..7224f00 100644 +--- a/libsemanage/src/nodes_policydb.c ++++ b/libsemanage/src/nodes_policydb.c +@@ -50,10 +50,8 @@ int node_policydb_dbase_init(semanage_handle_t * handle, + { + + if (dbase_policydb_init(handle, +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_KERNEL), +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_KERNEL), ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_KERNEL), ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL), + &SEMANAGE_NODE_RTABLE, + &SEMANAGE_NODE_POLICYDB_RTABLE, + &dconfig->dbase) < 0) +diff --git a/libsemanage/src/ports_policydb.c b/libsemanage/src/ports_policydb.c +index b9600f0..37d7deb 100644 +--- a/libsemanage/src/ports_policydb.c ++++ b/libsemanage/src/ports_policydb.c +@@ -50,10 +50,8 @@ int port_policydb_dbase_init(semanage_handle_t * handle, + { + + if (dbase_policydb_init(handle, +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_KERNEL), +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_KERNEL), ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_KERNEL), ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL), + &SEMANAGE_PORT_RTABLE, + &SEMANAGE_PORT_POLICYDB_RTABLE, + &dconfig->dbase) < 0) +diff --git a/libsemanage/src/semanage_store.c b/libsemanage/src/semanage_store.c +index 6051691..2856aaf 100644 +--- a/libsemanage/src/semanage_store.c ++++ b/libsemanage/src/semanage_store.c +@@ -110,10 +110,12 @@ static const char *semanage_sandbox_paths[SEMANAGE_STORE_NUM_PATHS] = { + "/disable_dontaudit", + "/preserve_tunables", + "/modules/disabled", ++ "/policy.kern", ++ "/file_contexts.local" + }; + + static char const * const semanage_final_prefix[SEMANAGE_FINAL_NUM] = { +- "/tmp", ++ "/final", + "", + }; + +@@ -943,9 +945,7 @@ int semanage_make_final(semanage_handle_t *sh) + goto cleanup; + } + +- /* Copy in exported databases. +- * i = 1 to avoid copying the top level directory. +- */ ++ // Build final directory structure + int i; + for (i = 1; i < SEMANAGE_FINAL_PATH_NUM; i++) { + if (strlen(semanage_final_path(SEMANAGE_FINAL_TMP, i)) >= sizeof(fn)) { +@@ -959,12 +959,6 @@ int semanage_make_final(semanage_handle_t *sh) + status = -1; + goto cleanup; + } +- +- semanage_copy_file( +- semanage_final_path(SEMANAGE_FINAL_SELINUX, i), +- semanage_final_path(SEMANAGE_FINAL_TMP, i), +- sh->conf->file_mode); +- /* ignore errors, these files may not exist */ + } + + cleanup: +@@ -2019,8 +2013,7 @@ int semanage_read_policydb(semanage_handle_t * sh, sepol_policydb_t * in) + FILE *infile = NULL; + + if ((kernel_filename = +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_KERNEL)) == NULL) { ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_KERNEL)) == NULL) { + goto cleanup; + } + if ((infile = fopen(kernel_filename, "r")) == NULL) { +@@ -2061,7 +2054,7 @@ int semanage_write_policydb(semanage_handle_t * sh, sepol_policydb_t * out) + FILE *outfile = NULL; + + if ((kernel_filename = +- semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_KERNEL)) == NULL) { ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL)) == NULL) { + goto cleanup; + } + if ((outfile = fopen(kernel_filename, "wb")) == NULL) { +@@ -2921,3 +2914,39 @@ int semanage_nc_sort(semanage_handle_t * sh, const char *buf, size_t buf_len, + + return 0; + } ++ ++int semanage_copy_policydb(semanage_handle_t *sh) ++{ ++ const char *src = NULL; ++ const char *dst = NULL; ++ int rc = -1; ++ ++ src = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL); ++ dst = semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_KERNEL); ++ ++ rc = semanage_copy_file(src, dst, sh->conf->file_mode); ++ if (rc != 0) { ++ goto cleanup; ++ } ++ ++cleanup: ++ return rc; ++} ++ ++int semanage_copy_fc_local(semanage_handle_t *sh) ++{ ++ const char *src = NULL; ++ const char *dst = NULL; ++ int rc = -1; ++ ++ src = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC_LOCAL); ++ dst = semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_FC_LOCAL); ++ ++ rc = semanage_copy_file(src, dst, sh->conf->file_mode); ++ if (rc != 0) { ++ goto cleanup; ++ } ++ ++cleanup: ++ return rc; ++} +diff --git a/libsemanage/src/semanage_store.h b/libsemanage/src/semanage_store.h +index 62c7079..ade43f2 100644 +--- a/libsemanage/src/semanage_store.h ++++ b/libsemanage/src/semanage_store.h +@@ -55,6 +55,8 @@ enum semanage_sandbox_defs { + SEMANAGE_DISABLE_DONTAUDIT, + SEMANAGE_PRESERVE_TUNABLES, + SEMANAGE_MODULES_DISABLED, ++ SEMANAGE_STORE_KERNEL, ++ SEMANAGE_STORE_FC_LOCAL, + SEMANAGE_STORE_NUM_PATHS + }; + +@@ -148,4 +150,7 @@ int semanage_nc_sort(semanage_handle_t * sh, + size_t buf_len, + char **sorted_buf, size_t * sorted_buf_len); + ++int semanage_copy_policydb(semanage_handle_t *sh); ++int semanage_copy_fc_local(semanage_handle_t *sh); ++ + #endif +diff --git a/libsemanage/src/users_base_policydb.c b/libsemanage/src/users_base_policydb.c +index 0a6ab9c..b42279c 100644 +--- a/libsemanage/src/users_base_policydb.c ++++ b/libsemanage/src/users_base_policydb.c +@@ -50,10 +50,8 @@ int user_base_policydb_dbase_init(semanage_handle_t * handle, + { + + if (dbase_policydb_init(handle, +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_KERNEL), +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_KERNEL), ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_KERNEL), ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL), + &SEMANAGE_USER_BASE_RTABLE, + &SEMANAGE_USER_BASE_POLICYDB_RTABLE, + &dconfig->dbase) < 0) +diff --git a/libsemanage/utils/semanage_migrate_store b/libsemanage/utils/semanage_migrate_store +index 2f85e9c..b170eda 100755 +--- a/libsemanage/utils/semanage_migrate_store ++++ b/libsemanage/utils/semanage_migrate_store +@@ -243,7 +243,8 @@ if __name__ == "__main__": + "users.local", + "users_extra.local", + "disable_dontaudit", +- "preserve_tunables" ] ++ "preserve_tunables", ++ "policy.kern" ] + + + create_dir(newroot_path(), 0o755) +-- +2.4.6 + diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0003-libsemanage-Add-file_contexts-and-seusers-to-the-sto.patch b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0003-libsemanage-Add-file_contexts-and-seusers-to-the-sto.patch new file mode 100644 index 0000000000..24e9778015 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0003-libsemanage-Add-file_contexts-and-seusers-to-the-sto.patch @@ -0,0 +1,265 @@ +From d56c2b434e99f60612c1290e82021ecbcbfaf5e6 Mon Sep 17 00:00:00 2001 +From: Yuli Khodorkovskiy +Date: Tue, 21 Jul 2015 15:08:15 -0400 +Subject: [PATCH] libsemanage: Add file_contexts and seusers to the store + +This patch writes file_contexts and seusers to the policy store as well as +/etc/selinux/. Additionally, file_contexts and seusers are now parsed from the +store rather than the final directory which was the old behavior. This allows +all policy related files to be kept in the policy store. + +Signed-off-by: Yuli Khodorkovskiy +--- + libsemanage/src/direct_api.c | 69 +++++++++++++++++++++++++------- + libsemanage/src/semanage_store.c | 49 ++++------------------- + libsemanage/src/semanage_store.h | 5 ++- + libsemanage/utils/semanage_migrate_store | 3 +- + 4 files changed, 66 insertions(+), 60 deletions(-) + +diff --git a/libsemanage/src/direct_api.c b/libsemanage/src/direct_api.c +index 3c6b168..b11f2ba 100644 +--- a/libsemanage/src/direct_api.c ++++ b/libsemanage/src/direct_api.c +@@ -248,18 +248,14 @@ int semanage_direct_connect(semanage_handle_t * sh) + goto err; + + if (fcontext_file_dbase_init(sh, +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_FC), +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_FC), ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_FC), ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC), + semanage_fcontext_dbase_policy(sh)) < 0) + goto err; + + if (seuser_file_dbase_init(sh, +- semanage_final_path(SEMANAGE_FINAL_SELINUX, +- SEMANAGE_SEUSERS), +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_SEUSERS), ++ semanage_path(SEMANAGE_ACTIVE, SEMANAGE_STORE_SEUSERS), ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_SEUSERS), + semanage_seuser_dbase_policy(sh)) < 0) + goto err; + +@@ -602,7 +598,7 @@ static int semanage_direct_update_seuser(semanage_handle_t * sh, cil_db_t *cildb + } + + if (size > 0) { +- ofilename = semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_SEUSERS); ++ ofilename = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_SEUSERS); + if (ofilename == NULL) { + return -1; + } +@@ -1039,7 +1035,8 @@ static int semanage_direct_commit(semanage_handle_t * sh) + size_t fc_buffer_len = 0; + const char *ofilename = NULL; + const char *path; +- int retval = -1, num_modinfos = 0, i, missing_policy_kern = 0; ++ int retval = -1, num_modinfos = 0, i, missing_policy_kern = 0, ++ missing_seusers = 0, missing_fc = 0, missing = 0; + sepol_policydb_t *out = NULL; + struct cil_db *cildb = NULL; + semanage_module_info_t *modinfos = NULL; +@@ -1151,10 +1148,26 @@ static int semanage_direct_commit(semanage_handle_t * sh) + if (access(path, F_OK) != 0) { + missing_policy_kern = 1; + } ++ ++ path = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC); ++ ++ if (access(path, F_OK) != 0) { ++ missing_fc = 1; ++ } ++ ++ path = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_SEUSERS); ++ ++ if (access(path, F_OK) != 0) { ++ missing_seusers = 1; ++ } + } + ++ missing |= missing_policy_kern; ++ missing |= missing_fc; ++ missing |= missing_seusers; ++ + /* If there were policy changes, or explicitly requested, rebuild the policy */ +- if (sh->do_rebuild || modified || missing_policy_kern) { ++ if (sh->do_rebuild || modified || missing) { + /* =================== Module expansion =============== */ + + retval = semanage_get_active_modules(sh, &modinfos, &num_modinfos); +@@ -1312,15 +1325,41 @@ static int semanage_direct_commit(semanage_handle_t * sh) + if (retval < 0) + goto cleanup; + +- retval = semanage_copy_policydb(sh); +- if (retval < 0) ++ retval = semanage_copy_file(semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL), ++ semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_KERNEL), ++ sh->conf->file_mode); ++ if (retval < 0) { + goto cleanup; ++ } + + path = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC_LOCAL); + if (access(path, F_OK) == 0) { +- retval = semanage_copy_fc_local(sh); +- if (retval < 0) ++ retval = semanage_copy_file(semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC_LOCAL), ++ semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_FC_LOCAL), ++ sh->conf->file_mode); ++ if (retval < 0) { + goto cleanup; ++ } ++ } ++ ++ path = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC); ++ if (access(path, F_OK) == 0) { ++ retval = semanage_copy_file(semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC), ++ semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_FC), ++ sh->conf->file_mode); ++ if (retval < 0) { ++ goto cleanup; ++ } ++ } ++ ++ path = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_SEUSERS); ++ if (access(path, F_OK) == 0) { ++ retval = semanage_copy_file(semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_SEUSERS), ++ semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_SEUSERS), ++ sh->conf->file_mode); ++ if (retval < 0) { ++ goto cleanup; ++ } + } + + /* run genhomedircon if its enabled, this should be the last operation +diff --git a/libsemanage/src/semanage_store.c b/libsemanage/src/semanage_store.c +index 2856aaf..fa0876f 100644 +--- a/libsemanage/src/semanage_store.c ++++ b/libsemanage/src/semanage_store.c +@@ -111,7 +111,9 @@ static const char *semanage_sandbox_paths[SEMANAGE_STORE_NUM_PATHS] = { + "/preserve_tunables", + "/modules/disabled", + "/policy.kern", +- "/file_contexts.local" ++ "/file_contexts.local", ++ "/file_contexts", ++ "/seusers" + }; + + static char const * const semanage_final_prefix[SEMANAGE_FINAL_NUM] = { +@@ -666,7 +668,7 @@ static int semanage_filename_select(const struct dirent *d) + + /* Copies a file from src to dst. If dst already exists then + * overwrite it. Returns 0 on success, -1 on error. */ +-static int semanage_copy_file(const char *src, const char *dst, mode_t mode) ++int semanage_copy_file(const char *src, const char *dst, mode_t mode) + { + int in, out, retval = 0, amount_read, n, errsv = errno; + char tmp[PATH_MAX]; +@@ -1425,11 +1427,11 @@ int semanage_split_fc(semanage_handle_t * sh) + goto cleanup; + } + +- fc = open(semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_FC), ++ fc = open(semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC), + O_WRONLY | O_CREAT | O_TRUNC, S_IRUSR | S_IWUSR); + if (fc < 0) { + ERR(sh, "Could not open %s for writing.", +- semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_FC)); ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC)); + goto cleanup; + } + hd = open(semanage_path(SEMANAGE_TMP, SEMANAGE_HOMEDIR_TMPL), +@@ -1454,8 +1456,7 @@ int semanage_split_fc(semanage_handle_t * sh) + } else { + if (write(fc, buf, strlen(buf)) < 0) { + ERR(sh, "Write to %s failed.", +- semanage_final_path(SEMANAGE_FINAL_TMP, +- SEMANAGE_FC)); ++ semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC)); + goto cleanup; + } + } +@@ -2914,39 +2915,3 @@ int semanage_nc_sort(semanage_handle_t * sh, const char *buf, size_t buf_len, + + return 0; + } +- +-int semanage_copy_policydb(semanage_handle_t *sh) +-{ +- const char *src = NULL; +- const char *dst = NULL; +- int rc = -1; +- +- src = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_KERNEL); +- dst = semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_KERNEL); +- +- rc = semanage_copy_file(src, dst, sh->conf->file_mode); +- if (rc != 0) { +- goto cleanup; +- } +- +-cleanup: +- return rc; +-} +- +-int semanage_copy_fc_local(semanage_handle_t *sh) +-{ +- const char *src = NULL; +- const char *dst = NULL; +- int rc = -1; +- +- src = semanage_path(SEMANAGE_TMP, SEMANAGE_STORE_FC_LOCAL); +- dst = semanage_final_path(SEMANAGE_FINAL_TMP, SEMANAGE_FC_LOCAL); +- +- rc = semanage_copy_file(src, dst, sh->conf->file_mode); +- if (rc != 0) { +- goto cleanup; +- } +- +-cleanup: +- return rc; +-} +diff --git a/libsemanage/src/semanage_store.h b/libsemanage/src/semanage_store.h +index ade43f2..acb6e3f 100644 +--- a/libsemanage/src/semanage_store.h ++++ b/libsemanage/src/semanage_store.h +@@ -57,6 +57,8 @@ enum semanage_sandbox_defs { + SEMANAGE_MODULES_DISABLED, + SEMANAGE_STORE_KERNEL, + SEMANAGE_STORE_FC_LOCAL, ++ SEMANAGE_STORE_FC, ++ SEMANAGE_STORE_SEUSERS, + SEMANAGE_STORE_NUM_PATHS + }; + +@@ -150,7 +152,6 @@ int semanage_nc_sort(semanage_handle_t * sh, + size_t buf_len, + char **sorted_buf, size_t * sorted_buf_len); + +-int semanage_copy_policydb(semanage_handle_t *sh); +-int semanage_copy_fc_local(semanage_handle_t *sh); ++int semanage_copy_file(const char *src, const char *dst, mode_t mode); + + #endif +diff --git a/libsemanage/utils/semanage_migrate_store b/libsemanage/utils/semanage_migrate_store +index b170eda..6443002 100755 +--- a/libsemanage/utils/semanage_migrate_store ++++ b/libsemanage/utils/semanage_migrate_store +@@ -244,7 +244,8 @@ if __name__ == "__main__": + "users_extra.local", + "disable_dontaudit", + "preserve_tunables", +- "policy.kern" ] ++ "policy.kern", ++ "file_contexts"] + + + create_dir(newroot_path(), 0o755) +-- +2.4.6 + diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0004-libsemanage-save-homedir_template-in-the-policy-stor.patch b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0004-libsemanage-save-homedir_template-in-the-policy-stor.patch new file mode 100644 index 0000000000..3bc1370ccb --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0004-libsemanage-save-homedir_template-in-the-policy-stor.patch @@ -0,0 +1,54 @@ +From 75dd8c062d1f6f0e0a7a9f1856c0957b423e8a02 Mon Sep 17 00:00:00 2001 +From: Steve Lawrence +Date: Thu, 3 Sep 2015 09:28:08 -0400 +Subject: [PATCH 1/3] libsemanage: save homedir_template in the policy store + for genhomedircon + +We don't currently store homedir_template in the policy store, which +means genhomedircon only has a template file to use if the +homedir_template was generated from the file contexts in the same +transaction. But homedir_template isn't always generated, as in the +case with setsebool -P. In this and other cases, genhomedircon will not +have a template file resulting in an empty file_contexts.homedir file. + +This commit changes this so that homedir_template is always stored in +the policy store so it can be used by genhomedircon regardless of how +policy was built. Also add the homedir_template file to the migration +script. + +Signed-off by: Steve Lawrence +Acked-by: Stephen Smalley +--- + libsemanage/src/direct_api.c | 1 - + libsemanage/utils/semanage_migrate_store | 3 ++- + 2 files changed, 2 insertions(+), 2 deletions(-) + +diff --git a/libsemanage/src/direct_api.c b/libsemanage/src/direct_api.c +index 90a7b22..6e49cae 100644 +--- a/libsemanage/src/direct_api.c ++++ b/libsemanage/src/direct_api.c +@@ -1415,7 +1415,6 @@ static int semanage_direct_commit(semanage_handle_t * sh) + + /* remove files that are automatically generated and no longer needed */ + unlink(semanage_path(SEMANAGE_TMP, SEMANAGE_FC_TMPL)); +- unlink(semanage_path(SEMANAGE_TMP, SEMANAGE_HOMEDIR_TMPL)); + unlink(semanage_path(SEMANAGE_TMP, SEMANAGE_USERS_EXTRA)); + + if (sh->do_rebuild || modified || bools_modified || fcontexts_modified) { +diff --git a/libsemanage/utils/semanage_migrate_store b/libsemanage/utils/semanage_migrate_store +index 539f469..297c71b 100755 +--- a/libsemanage/utils/semanage_migrate_store ++++ b/libsemanage/utils/semanage_migrate_store +@@ -251,7 +251,8 @@ if __name__ == "__main__": + "disable_dontaudit", + "preserve_tunables", + "policy.kern", +- "file_contexts"] ++ "file_contexts", ++ "homedir_template"] + + + create_dir(newroot_path(), 0o755) +-- +2.4.6 + diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0005-libsemanage-store-users_extra-in-the-policy-store.patch b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0005-libsemanage-store-users_extra-in-the-policy-store.patch new file mode 100644 index 0000000000..1aca2addb6 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/0005-libsemanage-store-users_extra-in-the-policy-store.patch @@ -0,0 +1,57 @@ +From dbc639a35af71eec1a1b386b74a822d794bb59df Mon Sep 17 00:00:00 2001 +From: Steve Lawrence +Date: Thu, 3 Sep 2015 13:07:36 -0400 +Subject: [PATCH 2/3] libsemanage: store users_extra in the policy store + +users_extra is needed by genhomedircon and when listing seusers, so it +must be kept in the policy store. Also move the FC_TMPL unlink() closer +to where the FC_TMPL is created; not a functional change, but eaiser to +follow. + +Signed-off-by: Steve Lawrence +Acked-by: Stephen Smalley +--- + libsemanage/src/direct_api.c | 7 +++---- + libsemanage/utils/semanage_migrate_store | 1 + + 2 files changed, 4 insertions(+), 4 deletions(-) + +diff --git a/libsemanage/src/direct_api.c b/libsemanage/src/direct_api.c +index 6e49cae..68dd0d1 100644 +--- a/libsemanage/src/direct_api.c ++++ b/libsemanage/src/direct_api.c +@@ -1272,6 +1272,9 @@ static int semanage_direct_commit(semanage_handle_t * sh) + if (retval < 0) + goto cleanup; + ++ /* remove FC_TMPL now that it is now longer needed */ ++ unlink(semanage_path(SEMANAGE_TMP, SEMANAGE_FC_TMPL)); ++ + pfcontexts->dtable->drop_cache(pfcontexts->dbase); + + /* SEUsers */ +@@ -1413,10 +1416,6 @@ static int semanage_direct_commit(semanage_handle_t * sh) + sepol_policydb_free(out); + out = NULL; + +- /* remove files that are automatically generated and no longer needed */ +- unlink(semanage_path(SEMANAGE_TMP, SEMANAGE_FC_TMPL)); +- unlink(semanage_path(SEMANAGE_TMP, SEMANAGE_USERS_EXTRA)); +- + if (sh->do_rebuild || modified || bools_modified || fcontexts_modified) { + retval = semanage_install_sandbox(sh); + } +diff --git a/libsemanage/utils/semanage_migrate_store b/libsemanage/utils/semanage_migrate_store +index 297c71b..b5eefaa 100755 +--- a/libsemanage/utils/semanage_migrate_store ++++ b/libsemanage/utils/semanage_migrate_store +@@ -247,6 +247,7 @@ if __name__ == "__main__": + "file_contexts.local", + "seusers", + "users.local", ++ "users_extra", + "users_extra.local", + "disable_dontaudit", + "preserve_tunables", +-- +2.4.6 + diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/libsemanage-2.4-build-paths.patch b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/libsemanage-2.4-build-paths.patch new file mode 100644 index 0000000000..7eeb9befb3 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/files/libsemanage-2.4-build-paths.patch @@ -0,0 +1,35 @@ +there's no point in using -I/-L flags to the system paths and this breaks +cross-compiling. just drop them. + +--- a/src/Makefile ++++ b/src/Makefile +@@ -60,7 +60,7 @@ + SWIG_CFLAGS += -Wno-error -Wno-unused-but-set-variable -Wno-unused-variable -Wno-shadow \ + -Wno-unused-parameter + +-override CFLAGS += -I../include -I$(INCLUDEDIR) -D_GNU_SOURCE ++override CFLAGS += -I../include -D_GNU_SOURCE + RANLIB=ranlib + + SWIG = swig -Wall -python -o $(SWIGCOUT) -outdir ./ +@@ -82,17 +82,17 @@ + $(CC) $(CFLAGS) $(SWIG_CFLAGS) $(RUBYINC) -fPIC -DSHARED -c -o $@ $< + + $(SWIGSO): $(SWIGLOBJ) +- $(CC) $(CFLAGS) $(LDFLAGS) -shared -o $@ $< -L. -lsemanage -L$(LIBDIR) ++ $(CC) $(CFLAGS) $(LDFLAGS) -shared -o $@ $< -L. -lsemanage + + $(SWIGRUBYSO): $(SWIGRUBYLOBJ) +- $(CC) $(CFLAGS) $(LDFLAGS) -shared -o $@ $^ -L. -lsemanage -L$(LIBDIR) ++ $(CC) $(CFLAGS) $(LDFLAGS) -shared -o $@ $^ -L. -lsemanage + + $(LIBA): $(OBJS) + $(AR) rcs $@ $^ + $(RANLIB) $@ + + $(LIBSO): $(LOBJS) +- $(CC) $(CFLAGS) $(LDFLAGS) -shared -o $@ $^ -lsepol -laudit -lselinux -lbz2 -lustr -L$(LIBDIR) -Wl,-soname,$(LIBSO),--version-script=libsemanage.map,-z,defs ++ $(CC) $(CFLAGS) $(LDFLAGS) -shared -o $@ $^ -lsepol -laudit -lselinux -lbz2 -lustr -Wl,-soname,$(LIBSO),--version-script=libsemanage.map,-z,defs + ln -sf $@ $(TARGET) + + $(LIBPC): $(LIBPC).in ../VERSION diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.2-r2.ebuild b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.2-r2.ebuild index 6c3ecddf7e..2d6bc07413 100644 --- a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.2-r2.ebuild +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.2-r2.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2015 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-libs/libsemanage/libsemanage-2.2-r2.ebuild,v 1.3 2015/04/08 18:28:33 mgorny Exp $ +# $Id$ EAPI="5" PYTHON_COMPAT=( python2_7 python3_3 ) diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.3-r4.ebuild b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.3-r4.ebuild index b528da5110..3e52b94dee 100644 --- a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.3-r4.ebuild +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.3-r4.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2015 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-libs/libsemanage/libsemanage-2.3-r4.ebuild,v 1.4 2015/04/08 18:28:33 mgorny Exp $ +# $Id$ EAPI="5" PYTHON_COMPAT=( python2_7 python3_3 python3_4 ) diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.4-r1.ebuild b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.4-r1.ebuild index 3f644c9826..f28af4cb58 100644 --- a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.4-r1.ebuild +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.4-r1.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2015 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-libs/libsemanage/libsemanage-2.4-r1.ebuild,v 1.2 2015/05/10 09:02:13 perfinion Exp $ +# $Id$ EAPI="5" PYTHON_COMPAT=( python2_7 python3_3 python3_4 ) diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.4-r2.ebuild b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.4-r2.ebuild new file mode 100644 index 0000000000..9e0890f8c6 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-2.4-r2.ebuild @@ -0,0 +1,132 @@ +# Copyright 1999-2015 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Id$ + +EAPI="5" +PYTHON_COMPAT=( python2_7 python3_3 python3_4 ) + +inherit multilib python-r1 toolchain-funcs eutils multilib-minimal + +MY_P="${P//_/-}" + +SEPOL_VER="${PV}" +SELNX_VER="${PV}" + +DESCRIPTION="SELinux kernel and policy management library" +HOMEPAGE="https://github.com/SELinuxProject/selinux/wiki" +SRC_URI="https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20150202/${MY_P}.tar.gz" + +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="amd64 ~arm ~arm64 ~mips x86" +IUSE="python" + +RDEPEND=">=sys-libs/libsepol-${SEPOL_VER}[${MULTILIB_USEDEP}] + >=sys-libs/libselinux-${SELNX_VER}[${MULTILIB_USEDEP}] + >=sys-process/audit-2.2.2[${MULTILIB_USEDEP}] + >=dev-libs/ustr-1.0.4-r2[${MULTILIB_USEDEP}] + " +DEPEND="${RDEPEND} + sys-devel/bison + sys-devel/flex + python? ( + >=dev-lang/swig-2.0.4-r1 + virtual/pkgconfig + ${PYTHON_DEPS} + )" + +# tests are not meant to be run outside of the +# full SELinux userland repo +RESTRICT="test" + +S="${WORKDIR}/${MY_P}" + +src_prepare() { + echo "# Set this to true to save the linked policy." >> "${S}/src/semanage.conf" + echo "# This is normally only useful for analysis" >> "${S}/src/semanage.conf" + echo "# or debugging of policy." >> "${S}/src/semanage.conf" + echo "save-linked=false" >> "${S}/src/semanage.conf" + echo >> "${S}/src/semanage.conf" + echo "# Set this to 0 to disable assertion checking." >> "${S}/src/semanage.conf" + echo "# This should speed up building the kernel policy" >> "${S}/src/semanage.conf" + echo "# from policy modules, but may leave you open to" >> "${S}/src/semanage.conf" + echo "# dangerous rules which assertion checking" >> "${S}/src/semanage.conf" + echo "# would catch." >> "${S}/src/semanage.conf" + echo "expand-check=1" >> "${S}/src/semanage.conf" + echo >> "${S}/src/semanage.conf" + echo "# Modules in the module store can be compressed" >> "${S}/src/semanage.conf" + echo "# with bzip2. Set this to the bzip2 blocksize" >> "${S}/src/semanage.conf" + echo "# 1-9 when compressing. The higher the number," >> "${S}/src/semanage.conf" + echo "# the more memory is traded off for disk space." >> "${S}/src/semanage.conf" + echo "# Set to 0 to disable bzip2 compression." >> "${S}/src/semanage.conf" + echo "bzip-blocksize=0" >> "${S}/src/semanage.conf" + echo >> "${S}/src/semanage.conf" + echo "# Reduce memory usage for bzip2 compression and" >> "${S}/src/semanage.conf" + echo "# decompression of modules in the module store." >> "${S}/src/semanage.conf" + echo "bzip-small=true" >> "${S}/src/semanage.conf" + + epatch "${FILESDIR}/0001-libsemanage-do-not-copy-contexts-in-semanage_migrate.patch" \ + "${FILESDIR}/0002-libsemanage-Add-policy-binary-and-file_contexts.loca.patch" \ + "${FILESDIR}/0003-libsemanage-Add-file_contexts-and-seusers-to-the-sto.patch" \ + "${FILESDIR}/0004-libsemanage-save-homedir_template-in-the-policy-stor.patch" \ + "${FILESDIR}/0005-libsemanage-store-users_extra-in-the-policy-store.patch" + epatch "${FILESDIR}"/${PN}-2.4-build-paths.patch + + epatch_user + + multilib_copy_sources +} + +multilib_src_compile() { + emake \ + AR="$(tc-getAR)" \ + CC="$(tc-getCC)" \ + LIBDIR="${EPREFIX}/usr/$(get_libdir)" \ + all + + if multilib_is_native_abi && use python; then + building_py() { + python_export PYTHON_INCLUDEDIR PYTHON_LIBPATH + emake CC="$(tc-getCC)" PYINC="-I${PYTHON_INCLUDEDIR}" PYTHONLBIDIR="${PYTHON_LIBPATH}" PYPREFIX="${EPYTHON##*/}" "$@" + } + python_foreach_impl building_py swigify + python_foreach_impl building_py pywrap + fi +} + +multilib_src_install() { + emake \ + LIBDIR="${ED}/usr/$(get_libdir)" \ + SHLIBDIR="${ED}/usr/$(get_libdir)" \ + DESTDIR="${ED}" install + + if multilib_is_native_abi && use python; then + installation_py() { + emake DESTDIR="${ED}" LIBDIR="${ED}/usr/$(get_libdir)" \ + SHLIBDIR="${ED}/usr/$(get_libdir)" install-pywrap + python_optimize # bug 531638 + } + python_foreach_impl installation_py + fi +} + +pkg_postinst() { + # Migrate the SELinux semanage configuration store if not done already + local selinuxtype=$(awk -F'=' '/SELINUXTYPE=/ {print $2}' "${EROOT}"/etc/selinux/config 2>/dev/null) + if [ -n "${selinuxtype}" ] && [ ! -d "${EROOT}"/var/lib/selinux/${mcs}/active ] ; then + ewarn "Since the 2.4 SELinux userspace, the policy module store is moved" + ewarn "from /etc/selinux to /var/lib/selinux. The migration will be run now." + ewarn "If there are any issues, it can be done manually by running:" + ewarn "/usr/libexec/selinux/semanage_migrate_store" + ewarn "For more information, please see" + ewarn "- https://github.com/SELinuxProject/selinux/wiki/Policy-Store-Migration" + fi + + # Run the store migration without rebuilds + for POLICY_TYPE in ${POLICY_TYPES} ; do + if [ ! -d "${EROOT}/var/lib/selinux/${POLICY_TYPE}/active" ] ; then + einfo "Migrating store ${POLICY_TYPE} (without policy rebuild)." + /usr/libexec/selinux/semanage_migrate_store -n -s "${POLICY_TYPE}" || die "Failed to migrate store ${POLICY_TYPE}" + fi + done +} diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-9999.ebuild b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-9999.ebuild index 2d8456d669..687be20166 100644 --- a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-9999.ebuild +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/libsemanage-9999.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2015 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sys-libs/libsemanage/libsemanage-9999.ebuild,v 1.1 2015/06/09 15:36:24 swift Exp $ +# $Id$ EAPI="5" PYTHON_COMPAT=( python2_7 python3_3 python3_4 ) @@ -22,7 +22,7 @@ if [[ ${PV} == 9999 ]] ; then S="${WORKDIR}/${MY_P}/${PN}" else SRC_URI="https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20150202/${MY_P}.tar.gz" - KEYWORDS="~amd64 ~x86" + KEYWORDS="~amd64 ~arm ~arm64 ~mips ~x86" S="${WORKDIR}/${MY_P}" fi @@ -76,6 +76,7 @@ src_prepare() { # If wanted for live builds, please use /etc/portage/patches epatch "${FILESDIR}/0001-libsemanage-do-not-copy-contexts-in-semanage_migrate.patch" fi + epatch "${FILESDIR}"/${PN}-2.4-build-paths.patch epatch_user @@ -117,8 +118,8 @@ multilib_src_install() { pkg_postinst() { # Migrate the SELinux semanage configuration store if not done already - local selinuxtype=$(awk -F'=' '/SELINUXTYPE=/ {print $2}' /etc/selinux/config); - if [ -n "${selinuxtype}" ] && [ ! -d /var/lib/selinux/${mcs}/active ] ; then + local selinuxtype=$(awk -F'=' '/SELINUXTYPE=/ {print $2}' "${EROOT}"/etc/selinux/config 2>/dev/null) + if [ -n "${selinuxtype}" ] && [ ! -d "${EROOT}"/var/lib/selinux/${mcs}/active ] ; then ewarn "Since the 2.4 SELinux userspace, the policy module store is moved" ewarn "from /etc/selinux to /var/lib/selinux. The migration will be run now." ewarn "If there are any issues, it can be done manually by running:" @@ -129,7 +130,7 @@ pkg_postinst() { # Run the store migration without rebuilds for POLICY_TYPE in ${POLICY_TYPES} ; do - if [ ! -d "${ROOT}/var/lib/selinux/${POLICY_TYPE}/active" ] ; then + if [ ! -d "${EROOT}/var/lib/selinux/${POLICY_TYPE}/active" ] ; then einfo "Migrating store ${POLICY_TYPE} (without policy rebuild)." /usr/libexec/selinux/semanage_migrate_store -n -s "${POLICY_TYPE}" || die "Failed to migrate store ${POLICY_TYPE}" fi diff --git a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/metadata.xml b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/metadata.xml index 83c24ee195..d4dc9ab41f 100644 --- a/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/metadata.xml +++ b/sdk_container/src/third_party/portage-stable/sys-libs/libsemanage/metadata.xml @@ -1,7 +1,10 @@ - selinux + + selinux@gentoo.org + SELinux Team + SELinux policy management libraries SELinuxProject/selinux