cvsdist ea3dcf
Summary: SELinux tools for managing policy
cvsdist ea3dcf
Name: setools
cb1af3
Version: 2.1.0
17ff59
Release: 5
cvsdist ea3dcf
License: GPL
cvsdist ea3dcf
Group: System Environment/Base
20a540
Source: http://www.tresys.com/Downloads/selinux-tools/setools-%{version}.tar.bz2
823649
Source1: setools.pam
823649
Source2: apol.console
823649
Source3: seuserx.console
823649
Source4: seaudit.console
823649
Source5: apol.desktop
823649
Source6: seuserx.desktop
823649
Source7: seaudit.desktop
20a540
Source8: sediffx.console
20a540
Source9: sediffx.desktop
74cefe
Source10: sepcut.console
74cefe
Source11: sepcut.desktop
823649
cvsdist ea3dcf
Prefix: %{_prefix}
cvsdist ea3dcf
BuildRoot: %{_tmppath}/%{name}-buildroot
cd2fb1
Requires: checkpolicy, policycoreutils, tcl >= 8.3
cd2fb1
Buildrequires: tk-devel >= 8.3, tcl-devel >= 8.3
d93772
BuildRequires: gtk2-devel, libglade2-devel
cvsdist 825424
BuildRequires: libselinux-devel, libxml2-devel
d93772
BuildRequires: libcap-devel
cvsdist 825424
BuildPrereq: bison, flex, pkgconfig
cvsdist 825424
cvsdist ea3dcf
Patch0: setools-rhat.patch
cvsdist ea3dcf
cvsdist ea3dcf
%description
cvsdist ea3dcf
Security-enhanced Linux is a patch of the Linux kernel and a number of
cvsdist ea3dcf
utilities with enhanced security functionality designed to add mandatory access 
cvsdist ea3dcf
controls to Linux.  The Security-enhanced Linux kernel contains new 
cvsdist ea3dcf
architectural components originally developed to improve the security of the Flask 
cvsdist ea3dcf
operating system. These architectural components provide general support for the 
cvsdist ea3dcf
enforcement of many kinds of mandatory access control policies, including those 
cvsdist ea3dcf
based on the concepts of Type Enforcement, Role-based Access Control, and 
cvsdist ea3dcf
Multi-level Security.
cvsdist ea3dcf
cvsdist ea3dcf
The tools and libraries in this release include:
cvsdist ea3dcf
cvsdist ea3dcf
1. seuser: A GUI and command line user manager tool for SELinux.  This 
cvsdist ea3dcf
is a tool that actually manages a portion of a running policy (i.e., 
cvsdist ea3dcf
user accounts).  
cvsdist ea3dcf
cvsdist ea3dcf
2. seuser scripts: A set of shell scripts: seuseradd, seusermod, and 
cvsdist ea3dcf
seuserdel.  These scripts combine the functions of the associated s* 
cvsdist ea3dcf
commands with seuser to provide a single interface to manage users in 
cvsdist ea3dcf
SE Linux.
cvsdist ea3dcf
cvsdist ea3dcf
3. libapol: The main policy.conf analysis library, which is the core 
cvsdist ea3dcf
library for all our tools.
cvsdist ea3dcf
cvsdist ea3dcf
See the help files for apol, sepcut, and seuser for help on using the 
cvsdist ea3dcf
tools.
cvsdist ea3dcf
cvsdist ea3dcf
%package gui
cvsdist ea3dcf
Summary: Graphical tools for handling SETools
cvsdist ea3dcf
Group: System Environment/Base
d93772
Requires: %{name} = %{version}-%{release}
cd2fb1
Requires: tk >= 8.3, libglade2
cvsdist ea3dcf
cvsdist ea3dcf
%description gui
cvsdist ea3dcf
Security-enhanced Linux is a patch of the Linux kernel and a number of
cvsdist ea3dcf
utilities with enhanced security functionality designed to add mandatory access 
cvsdist ea3dcf
controls to Linux.  The Security-enhanced Linux kernel contains new 
cvsdist ea3dcf
architectural components originally developed to improve the security of the Flask 
cvsdist ea3dcf
operating system. These architectural components provide general support for the 
cvsdist ea3dcf
enforcement of many kinds of mandatory access control policies, including those 
cvsdist ea3dcf
based on the concepts of Type Enforcement, Role-based Access Control, and 
cvsdist ea3dcf
Multi-level Security.
cvsdist ea3dcf
cvsdist ea3dcf
The tools and libraries in this release include:
cvsdist ea3dcf
cvsdist ea3dcf
1. apol: The GUI-based policy analysis tool.
cvsdist ea3dcf
cvsdist ea3dcf
2. sepcut: A basic GUI-based policy configuration, browsing, 
cvsdist ea3dcf
editing, and testing tool. This tool is intended to provide a 
cvsdist ea3dcf
complete, single user interface for viewing the source files of a 
cvsdist ea3dcf
policy, configuring policy program modules, editing policy files, and 
cvsdist ea3dcf
making and testing the policy.
cvsdist ea3dcf
cvsdist ea3dcf
3. awish: A version of the TCL/TK wish interpreter that includes the 
cvsdist ea3dcf
setools libraries.  We use this to test our GUIs (apol and seuser have the 
cvsdist ea3dcf
interpreter compiled within them).  One could conceivably write one's own 
cvsdist ea3dcf
GUI tools using TCL/TK as extended via awish.
cvsdist ea3dcf
cvsdist ea3dcf
See the help files for apol, sepcut, and seuser for help on using the 
cvsdist ea3dcf
tools.
cvsdist ea3dcf
cvsdist ea3dcf
%prep
cvsdist ea3dcf
%setup -q
cvsdist ea3dcf
%patch0 -p1 -b .rhat
20a540
	
cvsdist ea3dcf
%build
cvsdist a7fa5b
make LIBDIR=%{_libdir} all 
cvsdist ea3dcf
cvsdist ea3dcf
%install
cvsdist ea3dcf
rm -rf ${RPM_BUILD_ROOT}
17ff59
mkdir -p $RPM_BUILD_ROOT/%{_bindir}
17ff59
mkdir -p $RPM_BUILD_ROOT/%{_sbindir}
cvsdist ea3dcf
mkdir -p $RPM_BUILD_ROOT/%_libdir
17ff59
mkdir -p $RPM_BUILD_ROOT%{_includedir}/selinux/apol
cvsdist a7fa5b
mkdir -p $RPM_BUILD_ROOT/usr/share/doc/setools-%{version}
17ea08
mkdir -p $RPM_BUILD_ROOT/usr/share/tcl8.4
17ff59
make DESTDIR="${RPM_BUILD_ROOT}" INSTALL_HELPDIR=$RPM_BUILD_ROOT/usr/share/doc/setools-%{version} LIBDIR=%{_libdir} install install-bwidget
cvsdist 36c6b0
rm -f ${RPM_BUILD_ROOT}/etc/selinux/strict/src/policy/domains/program/seuser.te
cvsdist 36c6b0
rm -f ${RPM_BUILD_ROOT}/etc/selinux/strict/src/policy/file_contexts/program/seuser.fc
cvsdist a7fa5b
rm -f ${RPM_BUILD_ROOT}/usr/bin/findcon
cvsdist a7fa5b
rm -f ${RPM_BUILD_ROOT}/usr/bin/replcon
17ea08
rm -f ${RPM_BUILD_ROOT}/usr/bin/searchcon
17ea08
rm -f ${RPM_BUILD_ROOT}/usr/bin/indexcon
823649
install -D %{SOURCE1} ${RPM_BUILD_ROOT}%{_sysconfdir}/pam.d/apol
823649
install -D %{SOURCE1} ${RPM_BUILD_ROOT}%{_sysconfdir}/pam.d/seuserx
823649
install -D %{SOURCE1} ${RPM_BUILD_ROOT}%{_sysconfdir}/pam.d/seaudit
823649
install -D %{SOURCE2} ${RPM_BUILD_ROOT}%{_sysconfdir}/security/console.apps/apol
823649
install -D %{SOURCE3} ${RPM_BUILD_ROOT}%{_sysconfdir}/security/console.apps/seuserx
823649
install -D %{SOURCE4} ${RPM_BUILD_ROOT}%{_sysconfdir}/security/console.apps/seaudit
74cefe
install -D %{SOURCE8} ${RPM_BUILD_ROOT}%{_sysconfdir}/security/console.apps/sediffx
74cefe
install -D %{SOURCE10} ${RPM_BUILD_ROOT}%{_sysconfdir}/security/console.apps/sediffx
823649
install -D %{SOURCE5} ${RPM_BUILD_ROOT}%{_datadir}/applications/apol.desktop
823649
install -D %{SOURCE6} ${RPM_BUILD_ROOT}%{_datadir}/applications/seuserx.desktop
823649
install -D %{SOURCE7} ${RPM_BUILD_ROOT}%{_datadir}/applications/seaudit.desktop
92db4c
install -D %{SOURCE9} ${RPM_BUILD_ROOT}%{_datadir}/applications/sediffx.desktop
74cefe
install -D %{SOURCE11} ${RPM_BUILD_ROOT}%{_datadir}/applications/sediffx.desktop
17ff59
cd $RPM_BUILD_ROOT/%{_bindir}/
823649
ln -sf consolehelper apol 
823649
ln -sf consolehelper seuserx
823649
ln -sf consolehelper seaudit
1d439e
ln -sf consolehelper sepcut
cvsdist ea3dcf
cvsdist ea3dcf
%clean
cvsdist ea3dcf
rm -rf ${RPM_BUILD_ROOT}
cvsdist ea3dcf
cvsdist ea3dcf
%files gui
cvsdist ea3dcf
%defattr(-,root,root)
4a6c20
%dir /usr/share/tcl8.4/BWidget-1.4.1
823649
/usr/share/tcl8.4/BWidget-1.4.1/*
17ff59
%{_bindir}/apol
17ff59
%{_sbindir}/apol
17ff59
%{_bindir}/seuserx
17ff59
%{_sbindir}/seuserx
17ff59
%{_bindir}/sediff
17ff59
%{_sbindir}/sediffx
17ff59
%{_bindir}/awish
17ff59
%{_bindir}/seaudit
17ff59
%{_sbindir}/seaudit
17ff59
%{_sbindir}/seaudit-report
17ff59
%{_bindir}/sepcut
17ff59
%{_sbindir}/sepcut
823649
%{_datadir}/applications/apol.desktop
823649
%{_datadir}/applications/seuserx.desktop
823649
%{_datadir}/applications/seaudit.desktop
20a540
%{_datadir}/applications/sediffx.desktop
823649
%config %{_sysconfdir}/pam.d/apol
823649
%config %{_sysconfdir}/pam.d/seuserx
823649
%config %{_sysconfdir}/pam.d/seaudit
823649
%config %{_sysconfdir}/security/console.apps/apol
823649
%config %{_sysconfdir}/security/console.apps/seuserx
823649
%config %{_sysconfdir}/security/console.apps/seaudit
20a540
%config %{_sysconfdir}/security/console.apps/sediffx
20a540
20a540
%package devel
20a540
Summary: Development environment for SETools
20a540
Group: System Environment/Base
d93772
Requires: %{name} = %{version}-%{release}
20a540
20a540
%description devel
20a540
Headers, static libraries and API docs for SETools.
20a540
20a540
%files devel
64f0e3
%defattr(-,root,root)
17ff59
%{_includedir}/setools
64f0e3
%{_libdir}/*
cvsdist ea3dcf
cvsdist ea3dcf
%files
cvsdist ea3dcf
%defattr(-,root,root)
17ff59
%{_bindir}/seuser
17ff59
%{_bindir}/seuseradd
17ff59
%{_bindir}/seuserdel
17ff59
%{_bindir}/seusermod
17ff59
%{_bindir}/seinfo
17ff59
%{_bindir}/sesearch
4a6c20
%dir /usr/share/setools
cvsdist a7fa5b
/usr/share/setools/*
05d303
%dir /usr/share/doc/setools-%{version}
cvsdist a7fa5b
/usr/share/doc/setools-%{version}/*
cvsdist ea3dcf
cvsdist ea3dcf
%changelog
17ff59
* Mon May 23 2005 Bill Nottingham <notting@redhat.com> 2.1.0-5
17ff59
- put libraries in the right place (also puts debuginfo in the right
17ff59
  package)
64f0e3
- add %%defattr for -devel too
17ff59
74cefe
* Thu May 12 2005 Dan Walsh <dwalsh@redhat.com> 2.1.0-4
74cefe
- Move sepcut to gui apps.
74cefe
ee838e
* Fri May 6 2005 Dan Walsh <dwalsh@redhat.com> 2.1.0-3
ee838e
- Fix Missing return code.
ee838e
cd2fb1
* Wed Apr 20 2005 Dan Walsh <dwalsh@redhat.com> 2.1.0-2
cd2fb1
- Fix requires line
cd2fb1
cb1af3
* Tue Apr 19 2005 Dan Walsh <dwalsh@redhat.com> 2.1.0-1
cb1af3
- Update to latest from tresys
cb1af3
d93772
* Tue Apr 5 2005 Dan Walsh <dwalsh@redhat.com> 2.0.0-2
d93772
- Fix buildrequires lines in spec file
d93772
d93772
* Tue Mar 2 2005 Dan Walsh <dwalsh@redhat.com> 2.0.0-1
20a540
- Update to latest from tresys
20a540
3ca589
* Mon Nov 29 2004 Dan Walsh <dwalsh@redhat.com> 1.5.1-6
3a6c60
- add FALLBACK=true to /etc/security/console.apps/apol
3a6c60
0a42c6
* Wed Nov 10 2004 Dan Walsh <dwalsh@redhat.com> 1.5.1-3
0a42c6
- Add badtcl patch from Tresys.
0a42c6
b9fbc3
* Mon Nov 8 2004 Dan Walsh <dwalsh@redhat.com> 1.5.1-2
b9fbc3
- Apply malloc problem patch provided by  Sami Farin 
b9fbc3
17ea08
* Mon Nov 1 2004 Dan Walsh <dwalsh@redhat.com> 1.5.1-1
17ea08
- Update to latest from Upstream
17ea08
83b73c
* Wed Oct 6 2004 Dan Walsh <dwalsh@redhat.com> 1.4.1-5
83b73c
- Update tresys patch
83b73c
05d303
* Mon Oct 4 2004 Dan Walsh <dwalsh@redhat.com> 1.4.1-4
4a6c20
- Fix directory ownership
4a6c20
cvsdist 47d492
* Thu Jul 8 2004 Dan Walsh <dwalsh@redhat.com> 1.4.1-1
cvsdist 47d492
- Latest from Tresys
cvsdist 47d492
cvsdist 825424
* Wed Jun 23 2004 Dan Walsh <dwalsh@redhat.com> 1.4-5
cvsdist 825424
- Add build requires libselinux
cvsdist 825424
cvsdist a560a2
* Tue Jun 22 2004 Dan Walsh <dwalsh@redhat.com> 1.4-4
cvsdist a560a2
- Add support for policy.18
cvsdist a560a2
cvsdist 35a078
* Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
cvsdist 35a078
- rebuilt
cvsdist 35a078
cvsdist 4db8a2
* Thu Jun 10 2004 Dan Walsh <dwalsh@redhat.com> 1.4-2
cvsdist 4db8a2
- Fix install locations of policy_src_dir
cvsdist 4db8a2
cvsdist 07c5f9
* Wed Jun 2 2004 Dan Walsh <dwalsh@redhat.com> 1.4-1
cvsdist 07c5f9
- Update to latest from TRESYS.
cvsdist 07c5f9
cvsdist 07c5f9
* Tue Jun 1 2004 Dan Walsh <dwalsh@redhat.com> 1.3-3
cvsdist 36c6b0
- Make changes to work with targeted/strict policy
cvsdist 36c6b0
* Fri Apr 16 2004 Dan Walsh <dwalsh@redhat.com> 1.3-2
cvsdist 36c6b0
- Take out requirement for policy file
cvsdist 36c6b0
cvsdist a7fa5b
* Fri Apr 16 2004 Dan Walsh <dwalsh@redhat.com> 1.3-1
cvsdist a7fa5b
- Fix doc location
cvsdist a7fa5b
cvsdist a7fa5b
* Fri Apr 16 2004 Dan Walsh <dwalsh@redhat.com> 1.3-1
cvsdist a7fa5b
- Latest from TRESYS
cvsdist a7fa5b
cvsdist a7fa5b
* Tue Apr 13 2004 Dan Walsh <dwalsh@redhat.com> 1.2.1-8
cvsdist a7fa5b
- fix location of policy.conf file
cvsdist a7fa5b
cvsdist a7fa5b
* Tue Apr 6 2004 Dan Walsh <dwalsh@redhat.com> 1.2.1-7
cvsdist a7fa5b
- Obsolete setools-devel
cvsdist a7fa5b
* Tue Apr 6 2004 Dan Walsh <dwalsh@redhat.com> 1.2.1-6
cvsdist a7fa5b
- Fix location of 
cvsdist a7fa5b
* Tue Apr 6 2004 Dan Walsh <dwalsh@redhat.com> 1.2.1-5
cvsdist a7fa5b
- Remove devel libraries
cvsdist a7fa5b
- Fix installdir for lib64
cvsdist a7fa5b
cvsdist a7fa5b
* Sat Apr 3 2004 Dan Walsh <dwalsh@redhat.com> 1.2.1-4
cvsdist a7fa5b
- Add usr_t file read to policy
cvsdist a7fa5b
cvsdist a7fa5b
* Thu Mar 25 2004 Dan Walsh <dwalsh@redhat.com> 1.2.1-3
cvsdist a7fa5b
- Use tcl8.4
cvsdist a7fa5b
cvsdist e11b7b
* Tue Mar 02 2004 Elliot Lee <sopwith@redhat.com>
cvsdist e11b7b
- rebuilt
cvsdist e11b7b
cvsdist e11b7b
* Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
cvsdist e11b7b
- rebuilt
cvsdist e11b7b
cvsdist e11b7b
* Fri Feb 6 2004 Dan Walsh <dwalsh@redhat.com> 1.2.1-1
cvsdist e11b7b
- New patch
cvsdist e11b7b
cvsdist e11b7b
* Fri Feb 6 2004 Dan Walsh <dwalsh@redhat.com> 1.2-1
cvsdist e11b7b
- Latest upstream version
cvsdist e11b7b
cvsdist ea3dcf
* Tue Dec 30 2003 Dan Walsh <dwalsh@redhat.com> 1.1.1-1
cvsdist ea3dcf
- New version from upstream
cvsdist ea3dcf
- Remove seuser.te.  Now in policy file.
cvsdist ea3dcf
cvsdist ea3dcf
* Tue Dec 30 2003 Dan Walsh <dwalsh@redhat.com> 1.1-2
cvsdist ea3dcf
- Add Defattr to devel
cvsdist ea3dcf
- move libs to base kit
cvsdist ea3dcf
cvsdist ea3dcf
* Fri Dec 19 2003 Dan Walsh <dwalsh@redhat.com> 1.1-1
cvsdist ea3dcf
- Update to latest code from tresys
cvsdist ea3dcf
- Break into three separate packages for cmdline, devel and gui
cvsdist ea3dcf
- Incorporate the tcl patch
cvsdist ea3dcf
cvsdist ea3dcf
* Mon Dec 15 2003 Jens Petersen <petersen@redhat.com> - 1.0.1-3
cvsdist ea3dcf
- apply setools-1.0.1-tcltk.patch to build against tcl/tk 8.4
cvsdist ea3dcf
- buildrequire tk-devel
cvsdist ea3dcf
cvsdist ea3dcf
* Thu Nov 20 2003 Dan Walsh <dwalsh@redhat.com> 1.0.1-2
cvsdist ea3dcf
- Add Bwidgets to this RPM
cvsdist ea3dcf
cvsdist ea3dcf
* Tue Nov 4 2003 Dan Walsh <dwalsh@redhat.com> 1.0.1-1
cvsdist ea3dcf
- Upgrade to 1.0.1
cvsdist ea3dcf
cvsdist ea3dcf
* Wed Oct 15 2003 Dan Walsh <dwalsh@redhat.com> 1.0-6
cvsdist ea3dcf
- Clean up build
cvsdist ea3dcf
cvsdist ea3dcf
* Tue Oct 14 2003 Dan Walsh <dwalsh@redhat.com> 1.0-5
cvsdist ea3dcf
- Update with correct seuser.te
cvsdist ea3dcf
cvsdist ea3dcf
* Wed Oct 1 2003 Dan Walsh <dwalsh@redhat.com> 1.0-4
cvsdist ea3dcf
- Update with final release from Tresys
cvsdist ea3dcf
cvsdist ea3dcf
* Mon Jun 2 2003 Dan Walsh <dwalsh@redhat.com> 1.0-1
cvsdist ea3dcf
- Initial version
cvsdist ea3dcf
cvsdist ea3dcf
cvsdist ea3dcf
cvsdist ea3dcf