lp://qastaging/~ubuntu-branches/ubuntu/lucid/libsemanage/lucid-201305151535
- Get this branch:
- bzr branch lp://qastaging/~ubuntu-branches/ubuntu/lucid/libsemanage/lucid-201305151535
Branch merges
- Ubuntu Development Team: Pending requested
- Diff: 0 lines
Related source package recipes
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 13. By Manoj
-
* New upstream point release
+ Add semanage_set_check_ contexts( ) function to disable calling
setfiles - 12. By Manoj
-
* New upstream point release
+ Change semodule upgrade behavior to install even if the module
is not present from Dan Walsh.
+ Make genhomedircon trim excess '/' from homedirs from Dan Walsh.
+ Fix persistent dontaudit support to rebuild policy if the
dontaudit state is changed from Chad Sellers.
The first change is nice, since now you may just isntall a policy
module using semodule, without having to check if the module was
already in policy (ie, no distinction between install/update)
* Bug fix: "/lib shlib links to /usr/lib shlib", thanks to Raphael
Geissert. Moved libsemanage to /usr/lib (Closes: #549610).
* Pass CC, CFLAGS, Ans LDFLAGS along when compiling the python bindings
(should help cross compilation) - 11. By Manoj
-
* First cut at providing symbols files.
* Check for extra libraries and shlib version numbers. Unless there is
a nocheck option in the deb build options variable, now we look to see
if there are extra libraries we have linked to. Might need to back
this out later, if this causes problems on the buildds. - 10. By Manoj
-
* New upstream release
* [dee68bd]: [topic-debian]: Modify makefile to use installed versions
of libraries
* [97f1895]: [libsemanage]: Add a new package providing ruby bindings.
[c00b158]: [7641bb1]: Support for above. - 9. By Manoj
-
* New upstream release
+ Modify genhomedircon to skip %groupname entries.
Ultimately we need to expand them to the list of users to support
per-role homedir labeling when using the %groupname syntax.
+ Fix bug in genhomedircon fcontext matches logic from Dan Walsh.
Strip any trailing slash before appending /*$. - 8. By Manoj
-
[bab6644]: Also check for the uppoer bound on user ids in login.defs
Some non-Debian packages (like qmail, shudder) create
users not below MIN_UID, but above MAX_UID, in /etc/login.defs
(non-system users are supposed to have uids between MIN_UID and
MAX_UID.genhomedircon.
c:gethomedirs( ) checks pwent.pw_uid against MIN_UID in
/etc/login.defs to exclude system users from generating homedir
contexts. But unfortunately it does not check it against MAX_UID
setting from the same file. This gets us lines like the following in
the contexts/files/file_ contexts. homedirs file:
,----
| #
| # Home Context for user user_u
| #
| /var/qmail/[^/]*/. user_u: object_ r:user_ home_t: s0
| /var/qmail/[^/]*/\ .ssh(/. *)? user_u: object_ r:user_ home_ssh_ t:s0
| /var/qmail/[^/]*/\ .gnupg( /.+)? user_u: object_ r:user_ gpg_secret_ t:s0
| /var/qmail/[^/]-d user_u:object_ r:user_ home_dir_ t:s0
| /var/qmail/lost\+found/ .<<none> >
| /var/qmail -d system_u:object_ r:home_ root_t: s0
| /var/qmail/\.journal <<none>>
| /var/qmail/lost\+found -d system_ u:object_ r:lost_ found_t: s0
| /tmp/gconfd-.-d user_u:object_ r:user_ tmp_t:s0
`----
This commit adds checking uid value againt MAX_UID too.Bug fix: "login.defs:MAX_UID have no effect on generating list of
valid users, but MIN_UID does have.", thanks to root
(Closes: #510134). - 7. By Manoj
-
Bug fix: "Python errors during upgrade", thanks to Frans Pop. This is
a serious bug. (Closes: #499023). - 6. By Manoj
-
* New upstream release
* Merged patch to skip reload if no active store exists and the store
path doesn't match the active store path from Dan Walsh.
* Merged patch to not destroy sepol handle on error path of connect
from James Athey.
* Merged patch to add genhomedircon path to semanage.conf from James
Athey.
* Updated version for release.
* Bug fix: "'Conflicts: python2.4-semanage' has incorrect version",
thanks to Max Bowsher (Closes: #391596).
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://qastaging/ubuntu/saucy/libsemanage
