rpms/libselinux/devel libselinux-rhat.patch, 1.92, 1.93 libselinux.spec, 1.231, 1.232

Fri Nov 3 21:36:30 UTC 2006

Author: dwalsh

Update of /cvs/dist/rpms/libselinux/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv1130

Modified Files:
	libselinux-rhat.patch libselinux.spec 
Log Message:
* Fri Nov 3 2006 Dan Walsh <dwalsh at redhat.com> - 1.33.1-2
- Add James Antill patch for login verification of MLS Levels
-  MLS ragnes need to be checked, Eg. login/cron. This patch adds infrastructure.


libselinux-rhat.patch:
 include/selinux/av_permissions.h  |    3 +++
 include/selinux/av_permissions.h~ |only
 include/selinux/flask.h           |    1 +
 src/av_perm_to_string.h           |    2 ++
 src/av_perm_to_string.h~          |only
 src/class_to_string.h             |    1 +
 6 files changed, 7 insertions(+)

Index: libselinux-rhat.patch
===================================================================
RCS file: /cvs/dist/rpms/libselinux/devel/libselinux-rhat.patch,v
retrieving revision 1.92
retrieving revision 1.93
diff -u -r1.92 -r1.93

--- libselinux-rhat.patch	25 Sep 2006 14:19:06 -0000	1.92
+++ libselinux-rhat.patch	3 Nov 2006 21:36:28 -0000	1.93
@@ -1,19 +1,40 @@
-diff -ur libselinux-1.30.28.orig/include/selinux/av_permissions.h libselinux-1.30.28/include/selinux/av_permissions.h
---- libselinux-1.30.28.orig/include/selinux/av_permissions.h	2006-09-25 09:44:13.000000000 -0400
-+++ libselinux-1.30.28/include/selinux/av_permissions.h	2006-09-25 09:44:47.000000000 -0400
-@@ -468,6 +468,7 @@
- #define PROCESS__EXECSTACK                        0x04000000UL
- #define PROCESS__EXECHEAP                         0x08000000UL
- #define PROCESS__SETKEYCREATE                     0x10000000UL
-+#define PROCESS__SETSOCKCREATE                    0x20000000UL
+diff -rup libselinux-1.30.29-orig/include/selinux/av_permissions.h libselinux-1.30.29/include/selinux/av_permissions.h
+--- libselinux-1.30.29-orig/include/selinux/av_permissions.h	2006-09-29 11:50:24.000000000 -0400
++++ libselinux-1.30.29/include/selinux/av_permissions.h	2006-10-31 11:58:39.000000000 -0500
+@@ -970,3 +970,6 @@
+ #define KEY__LINK                                 0x00000010UL
+ #define KEY__SETATTR                              0x00000020UL
+ #define KEY__CREATE                               0x00000040UL
++
++#define CONTEXT__TRANSLATE                        0x00000001UL
++#define CONTEXT__CONTAINS                         0x00000002UL
+Only in libselinux-1.30.29/include/selinux: av_permissions.h~
+diff -rup libselinux-1.30.29-orig/include/selinux/flask.h libselinux-1.30.29/include/selinux/flask.h
+--- libselinux-1.30.29-orig/include/selinux/flask.h	2006-09-29 11:50:24.000000000 -0400
++++ libselinux-1.30.29/include/selinux/flask.h	2006-10-31 11:57:52.000000000 -0500
+@@ -63,6 +63,7 @@
+ #define SECCLASS_APPLETALK_SOCKET                        56
+ #define SECCLASS_PACKET                                  57
+ #define SECCLASS_KEY                                     58
++#define SECCLASS_CONTEXT                                 59
  
- #define IPC__CREATE                               0x00000001UL
- #define IPC__DESTROY                              0x00000002UL
-@@ -910,6 +911,7 @@
- #define ASSOCIATION__SENDTO                       0x00000001UL
- #define ASSOCIATION__RECVFROM                     0x00000002UL
- #define ASSOCIATION__SETCONTEXT                   0x00000004UL
-+#define ASSOCIATION__POLMATCH                     0x00000008UL
- 
- #define NETLINK_KOBJECT_UEVENT_SOCKET__IOCTL      0x00000001UL
- #define NETLINK_KOBJECT_UEVENT_SOCKET__READ       0x00000002UL
+ /*
+  * Security identifier indices for initial entities
+diff -rup libselinux-1.30.29-orig/src/av_perm_to_string.h libselinux-1.30.29/src/av_perm_to_string.h
+--- libselinux-1.30.29-orig/src/av_perm_to_string.h	2006-09-29 11:50:23.000000000 -0400
++++ libselinux-1.30.29/src/av_perm_to_string.h	2006-10-31 11:58:21.000000000 -0500
+@@ -263,3 +263,5 @@ S_(SECCLASS_FILESYSTEM, FILESYSTEM__MOUN
+     S_(SECCLASS_KEY, KEY__LINK, "link")
+     S_(SECCLASS_KEY, KEY__SETATTR, "setattr")
+     S_(SECCLASS_KEY, KEY__CREATE, "create")
++    S_(SECCLASS_CONTEXT, CONTEXT__TRANSLATE, "translate")
++    S_(SECCLASS_CONTEXT, CONTEXT__CONTAINS, "contains")
+Only in libselinux-1.30.29/src: av_perm_to_string.h~
+diff -rup libselinux-1.30.29-orig/src/class_to_string.h libselinux-1.30.29/src/class_to_string.h
+--- libselinux-1.30.29-orig/src/class_to_string.h	2006-09-29 11:50:23.000000000 -0400
++++ libselinux-1.30.29/src/class_to_string.h	2006-10-31 11:57:52.000000000 -0500
+@@ -61,3 +61,4 @@ S_("null")
+     S_("appletalk_socket")
+     S_("packet")
+     S_("key")
++    S_("context")


Index: libselinux.spec
===================================================================
RCS file: /cvs/dist/rpms/libselinux/devel/libselinux.spec,v
retrieving revision 1.231
retrieving revision 1.232
diff -u -r1.231 -r1.232
--- libselinux.spec	25 Oct 2006 02:52:18 -0000	1.231
+++ libselinux.spec	3 Nov 2006 21:36:28 -0000	1.232
@@ -2,10 +2,11 @@
 Summary: SELinux library and simple utilities
 Name: libselinux
 Version: 1.33.1
-Release: 1
+Release: 2
 License: Public domain (uncopyrighted)
 Group: System Environment/Libraries
 Source: http://www.nsa.gov/selinux/archives/%{name}-%{version}.tgz
+Patch: libselinux-rhat.patch
 
 BuildRequires: libsepol-devel >= %{libsepolver} swig
 Requires: libsepol >= %{libsepolver} setransd
@@ -48,6 +49,7 @@
 
 %prep
 %setup -q
+%patch -p1 -b .rhat
 
 %build
 make clean
@@ -117,6 +119,10 @@
 %{_libdir}/python*/site-packages/selinux.py*
 
 %changelog
+* Fri Nov 3 2006 Dan Walsh <dwalsh at redhat.com> - 1.33.1-2
+- Add James Antill patch for login verification of MLS Levels
+-  MLS ragnes need to be checked, Eg. login/cron. This patch adds infrastructure.
+
 * Tue Oct 24 2006 Dan Walsh <dwalsh at redhat.com> - 1.33.1-1
 - Upgrade to latest from NSA
 	* Merged updated flask definitions from Darrel Goeddel.


