policycoreutils: semanage

When modifying an selinux login record, seobject.py, may try to log a value, self.sename, which has been preset to "None" and this will fail. So, we set it to something useful. Signed-off-by: Joe Slater <jslater@windriver.com> Signed-off-by: Joe MacDonald <joe@deserted.net>
author: Joe Slater <jslater@windriver.com> 2014-04-03 14:05:49 -0400
committer: Joe MacDonald <joe@deserted.net> 2014-04-03 14:46:10 -0400
commit: ccb3c64d97a9833f0740bd590eb78f08887816bc (patch)
tree: 6c98c8c6e594bc9b7e12851454f04a6fc4672751
parent: f562f0630e4966d6a0eef6f2c3060730da2ce8d6 (diff)
download: meta-selinux-ccb3c64d97a9833f0740bd590eb78f08887816bc.tar.gz
2 files changed, 23 insertions, 1 deletions
diff --git a/recipes-security/selinux/policycoreutils/policycoreutils-semanage-edit-user.patch b/recipes-security/selinux/policycoreutils/policycoreutils-semanage-edit-user.patch
new file mode 100644
index 0000000..f5aaa74
--- /dev/null
+++ b/recipes-security/selinux/policycoreutils/policycoreutils-semanage-edit-user.patch
@@ -0,0 +1,21 @@
+policycoreutils: semanage
+When modifying selinux login records, self.sename might not be
+needed, but it IS passed to a log function, so it must be set
+to something or the log attempt will fail.
+Upstream-Status: Pending
+Signed-off-by: Joe Slater <jslater@windriver.com>
+--- a/semanage/seobject.py
+++ b/semanage/seobject.py
+@@ -576,6 +576,7 @@ class loginRecords(semanageRecords):
+ 
+                if sename != "":
+                        semanage_seuser_set_sename(self.sh, u, sename)
+                       self.sename = sename
+                else:
+                        self.sename = self.oldsename
+                        
diff --git a/recipes-security/selinux/policycoreutils_2.2.5.bb b/recipes-security/selinux/policycoreutils_2.2.5.bb
index d851f74..bd3a5dd 100644
--- a/recipes-security/selinux/policycoreutils_2.2.5.bb
+++ b/recipes-security/selinux/policycoreutils_2.2.5.bb
@@ -1,4 +1,4 @@
-PR = "r0"
+PR = "r1"
 include selinux_20131030.inc
 include ${BPN}.inc
@@ -13,4 +13,5 @@ SRC_URI += "\
        file://policycoreutils-fix-sepolicy-install-path.patch \
        file://policycoreutils-make-O_CLOEXEC-optional.patch \
        file://policycoreutils-loadpolicy-symlink.patch \
+        file://policycoreutils-semanage-edit-user.patch \
        "
author	Joe Slater <jslater@windriver.com>	2014-04-03 14:05:49 -0400
committer	Joe MacDonald <joe@deserted.net>	2014-04-03 14:46:10 -0400
commit	ccb3c64d97a9833f0740bd590eb78f08887816bc (patch)
tree	6c98c8c6e594bc9b7e12851454f04a6fc4672751
parent	f562f0630e4966d6a0eef6f2c3060730da2ce8d6 (diff)
download	meta-selinux-ccb3c64d97a9833f0740bd590eb78f08887816bc.tar.gz

diff --git a/recipes-security/selinux/policycoreutils/policycoreutils-semanage-edit-user.patch b/recipes-security/selinux/policycoreutils/policycoreutils-semanage-edit-user.patch new file mode 100644 index 0000000..f5aaa74 --- /dev/null +++ b/recipes-security/selinux/policycoreutils/policycoreutils-semanage-edit-user.patch
@@ -0,0 +1,21 @@
		1	policycoreutils: semanage
		2
		3	When modifying selinux login records, self.sename might not be
		4	needed, but it IS passed to a log function, so it must be set
		5	to something or the log attempt will fail.
		6
		7	Upstream-Status: Pending
		8
		9	Signed-off-by: Joe Slater <jslater@windriver.com>
		10
		11
		12	--- a/semanage/seobject.py
		13	+++ b/semanage/seobject.py
		14	@@ -576,6 +576,7 @@ class loginRecords(semanageRecords):
		15
		16	if sename != "":
		17	semanage_seuser_set_sename(self.sh, u, sename)
		18	+ self.sename = sename
		19	else:
		20	self.sename = self.oldsename
		21


diff --git a/recipes-security/selinux/policycoreutils_2.2.5.bb b/recipes-security/selinux/policycoreutils_2.2.5.bb index d851f74..bd3a5dd 100644 --- a/recipes-security/selinux/policycoreutils_2.2.5.bb +++ b/recipes-security/selinux/policycoreutils_2.2.5.bb
@@ -1,4 +1,4 @@
1	PR = "r0"	1	PR = "r1"
2		2
3	include selinux_20131030.inc	3	include selinux_20131030.inc
4	include ${BPN}.inc	4	include ${BPN}.inc
@@ -13,4 +13,5 @@ SRC_URI += "\
13	file://policycoreutils-fix-sepolicy-install-path.patch \	13	file://policycoreutils-fix-sepolicy-install-path.patch \
14	file://policycoreutils-make-O_CLOEXEC-optional.patch \	14	file://policycoreutils-make-O_CLOEXEC-optional.patch \
15	file://policycoreutils-loadpolicy-symlink.patch \	15	file://policycoreutils-loadpolicy-symlink.patch \
		16	file://policycoreutils-semanage-edit-user.patch \
16	"	17	"