Re: Please unblock policycoreutils/1.32-3
On Mon, 5 Mar 2007 03:05:07 -0800, Steve Langasek <vorlon@debian.org>
said:
> The only change I find in the uploaded package, aside from the
> pruning of the arch metadata (which is welcome, though it makes
> reviewing this particular interdiff painful), is to the changelog.
> Am I overlooking something?
No, I was.
,----
| policycoreutils (1.32-3) unstable; urgency=high
|
| * Remember to run arch_export from the correct checked out working tree,
| so as to include the patches that you tested in the upload.
|
| -- Manoj Srivastava <srivasta@debian.org> Wed, 7 Mar 2007 16:27:19 -0600
`----
Apart from this changelog entry, this upload contains
everything I stated the -2 version contained. I have actually been
running the patches in my virtual machines, so the patches work
fine.
Sorry about the fake upload. I plead sleep deprivation and a
recently twisted L5-S1 vertebrae.
This is a release that prevents running setfiles with no file
path (the file path is a required argument to setfiles) if no
writeable SELinux capable filesystems exist on the target
machine. This came up when someone tried to install SELinux o0n a
machine with just reiserfs filesystems, and reiserfs does not support
the xattr functionality SELinux uses for setting security labels on
filesystem object. The fix is just a check to see if any fileststems
were found, and issueing a diagnostic if not; this is just a shell
if() conditional.
This upload also changes diagnostic messages (no valid FS),
changes an audit2allow error message to not mention "rpm" packages,
updates a man page, and is wholly low risk.
This does not impact the debian installer.
manoj
policycoreutils (1.32-2) unstable; urgency=low
* Bug fix: "policycoreutils: fixfiles should warn if no suitable fs
found", thanks to David Härdeman. This was a missing simple check --
now fixfiles does not attempt to run setfiles on an empty set if it
did not find a valid directory. Low risk, simple test. (Closes: #397198).
* Bug fix: "policycoreutils: audit2allow line 135 should refer to debian
package", thanks to Russell Coker. It now asks the users to install
the checkpolicy package, not the chckpolicy rpm package.
(Closes: #401369).
* Bug fix: "policycoreutils: patch for semanage.8", thanks to Russell
Coker. This adds some options that had been missing from the man page.
(Closes: #406702).
* Bug fix: "policycoreutils: fixfiles excludes reiserfs", thanks to
David Härdeman. Actually, it should: Support for atomic inode labeling
has not been implemented in reiserfs, so there is no SELinux support
for it. This is documented in selinux-doc. Reiser just won't label
files when they are created making it basically worthless for xattr
labeling. (Closes: #397196).
-- Manoj Srivastava <srivasta@debian.org> Sun, 4 Mar 2007 00:06:37 -0600
--
Instead of loving your enemies, treat your friends a little
better. Edgar W. Howe
Manoj Srivastava <srivasta@acm.org> <http://www.golden-gryphon.com/>
1024D/BF24424C print 4966 F272 D093 B493 410B 924B 21BA DABB BF24 424C
Reply to: