rpms/pam/FC-4 pam-0.79-selinux-nofail.patch, 1.1, 1.2 pam.spec, 1.82, 1.83

fedora-cvs-commits at redhat.com fedora-cvs-commits at redhat.com
Fri Jul 22 13:42:15 UTC 2005 

Author: tmraz

Update of /cvs/dist/rpms/pam/FC-4
In directory cvs.devel.redhat.com:/tmp/cvs-serv31852

Modified Files:
	pam-0.79-selinux-nofail.patch pam.spec 
Log Message:
* Fri Jul 22 2005 Tomas Mraz <tmraz at redhat.com> 0.79-9.3
- more pam_selinux fixes for permissive policy (Dan Walsh)


pam-0.79-selinux-nofail.patch:
 pam_selinux.c |   28 +++++++++++++++++++++-------
 1 files changed, 21 insertions(+), 7 deletions(-)

Index: pam-0.79-selinux-nofail.patch
===================================================================
RCS file: /cvs/dist/rpms/pam/FC-4/pam-0.79-selinux-nofail.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- pam-0.79-selinux-nofail.patch	19 Jul 2005 09:16:35 -0000	1.1
+++ pam-0.79-selinux-nofail.patch	22 Jul 2005 13:42:12 -0000	1.2
@@ -1,5 +1,5 @@
---- Linux-PAM-0.79/modules/pam_selinux/pam_selinux.c.nofail	2005-07-19 11:09:04.000000000 +0200
-+++ Linux-PAM-0.79/modules/pam_selinux/pam_selinux.c	2005-07-19 11:13:39.000000000 +0200
+--- Linux-PAM-0.79/modules/pam_selinux/pam_selinux.c.nofail	2005-07-19 11:15:17.000000000 +0200
++++ Linux-PAM-0.79/modules/pam_selinux/pam_selinux.c	2005-07-22 15:39:20.000000000 +0200
 @@ -425,12 +425,21 @@
      if (has_tty) {
        user_context = manual_context(pamh,username,debug);
@@ -39,3 +39,15 @@
    } else {
      if (debug)
        syslog(LOG_NOTICE, _("%s: set %s security context to %s"),MODULE, 
+@@ -516,7 +527,10 @@
+   if (status) {
+     syslog(LOG_ERR, _("Error!  Unable to set executable context %s."), 
+            prev_user_context);
+-    return PAM_AUTH_ERR;
++    if (security_getenforce() == 1)
++      return PAM_AUTH_ERR;
++    else
++      return PAM_SUCCESS;
+   }
+ 
+   if (debug)


Index: pam.spec
===================================================================
RCS file: /cvs/dist/rpms/pam/FC-4/pam.spec,v
retrieving revision 1.82
retrieving revision 1.83
diff -u -r1.82 -r1.83
--- pam.spec	19 Jul 2005 09:16:35 -0000	1.82
+++ pam.spec	22 Jul 2005 13:42:12 -0000	1.83
@@ -12,7 +12,7 @@
 Summary: A security tool which provides authentication for applications.
 Name: pam
 Version: 0.79
-Release: 9.2
+Release: 9.3
 License: GPL or BSD
 Group: System Environment/Base
 Source0: ftp.us.kernel.org:/pub/linux/libs/pam/pre/library/Linux-PAM-%{version}.tar.bz2
@@ -382,6 +382,9 @@
 %{_libdir}/libpam_misc.so
 
 %changelog
+* Fri Jul 22 2005 Tomas Mraz <tmraz at redhat.com> 0.79-9.3
+- more pam_selinux fixes for permissive policy (Dan Walsh)
+
 * Tue Jul 19 2005 Tomas Mraz <tmraz at redhat.com> 0.79-9.2
 - fixed module tests so the pam doesn't require itself to build (#163502)
 - added buildprereq for building the documentation (#163503)

More information about the fedora-cvs-commits mailing list