- BR find_lang 1.24 to package LC_TIME category catalog symlinks

[packages/coreutils.git] / coreutils-selinux.patch

diff -Nur coreutils-6.4/README coreutils-6.4.selinux/README
--- coreutils-6.4/README	2006-10-22 16:54:15.000000000 +0000
+++ coreutils-6.4.selinux/README	2006-10-31 23:39:34.000000000 +0000
@@ -7,11 +7,11 @@
 
 The programs that can be built with this package are:
 
-  [ base64 basename cat chgrp chmod chown chroot cksum comm cp csplit cut date
+  [ base64 basename cat chcon chgrp chmod chown chroot cksum comm cp csplit cut date
   dd df dir dircolors dirname du echo env expand expr factor false fmt fold
   ginstall groups head hostid hostname id join kill link ln logname ls
   md5sum mkdir mkfifo mknod mv nice nl nohup od paste pathchk pinky pr
-  printenv printf ptx pwd readlink rm rmdir runuser seq sha1sum sha224sum sha256sum
+  printenv printf ptx pwd readlink rm rmdir runuser runcon seq sha1sum sha224sum sha256sum
   sha384sum sha512sum shred shuf sleep sort split stat stty su sum sync tac
   tail tee test touch tr true tsort tty uname unexpand uniq unlink uptime
   users vdir wc who whoami yes
diff -Nur coreutils-6.4/configure.ac coreutils-6.4.selinux/configure.ac
--- coreutils-6.4/configure.ac	2006-10-31 23:38:15.000000000 +0000
+++ coreutils-6.4.selinux/configure.ac	2006-10-31 23:39:34.000000000 +0000
@@ -264,6 +264,13 @@
   LIB_CRYPT=
 fi
 
+dnl Give the chance to enable SELINUX
+AC_ARG_ENABLE(selinux, dnl
+[  --enable-selinux              Enable use of the SELinux libraries],
+[AC_DEFINE(WITH_SELINUX, 1, [Define if you want to use SELinux])
+LIB_SELINUX="-lselinux"
+AC_SUBST(LIB_SELINUX)])
+
 AC_CONFIG_FILES(
   Makefile
   doc/Makefile
diff -Nur coreutils-6.4/lib/config.hin coreutils-6.4.selinux/lib/config.hin
--- coreutils-6.4/lib/config.hin	2006-10-22 20:36:23.000000000 +0000
+++ coreutils-6.4.selinux/lib/config.hin	2006-10-31 23:39:34.000000000 +0000
@@ -1645,6 +1645,9 @@
    'wint_t'. */
 #undef WINT_T_SUFFIX
 
+/* Define if you want to use SELINUX */
+#undef WITH_SELINUX
+
 /* Define to 1 if your processor stores words with the most significant byte
    first (like Motorola and SPARC, unlike Intel and VAX). */
 #undef WORDS_BIGENDIAN
--- coreutils-6.5/man/Makefile.am.orig	2006-11-22 10:47:32.569505000 +0100
+++ coreutils-6.5/man/Makefile.am	2006-11-22 10:48:11.669505000 +0100
@@ -30,7 +30,7 @@
   shred.1 shuf.1 sleep.1 sort.1 split.1 stat.1 \
   su.1 sum.1 sync.1 tac.1 tail.1 tee.1 test.1 touch.1 tr.1 true.1 tsort.1 \
   tty.1 unexpand.1 uniq.1 unlink.1 vdir.1 wc.1 \
-  whoami.1 yes.1 $(MAN)
+  whoami.1 yes.1 chcon.1 runcon.1 $(MAN)
 optional_mans = \
   chroot.1 hostid.1 nice.1 pinky.1 stty.1 uname.1 uptime.1 users.1 who.1
 man_MANS = getgid.1
@@ -142,6 +142,8 @@
 who.1:		$(common_dep)	$(srcdir)/who.x		../src/who.c
 whoami.1:	$(common_dep)	$(srcdir)/whoami.x	../src/whoami.c
 yes.1:		$(common_dep)	$(srcdir)/yes.x		../src/yes.c
+chcon.1:	$(common_dep)	$(srcdir)/chcon.x	../src/chcon.c
+runcon.1:	$(common_dep)	$(srcdir)/runcon.x	../src/runcon.c
 
 SUFFIXES = .x .1
 
diff -Nur coreutils-6.4/man/chcon.1 coreutils-6.4.selinux/man/chcon.1
--- coreutils-6.4/man/chcon.1	1970-01-01 00:00:00.000000000 +0000
+++ coreutils-6.4.selinux/man/chcon.1	2006-10-31 23:39:34.000000000 +0000
@@ -0,0 +1,64 @@
+.TH CHCON 1 "July 2003" "chcon (coreutils) 5.0" "User Commands"
+.SH NAME
+chcon \- change security context
+.SH SYNOPSIS
+.B chcon
+[\fIOPTION\fR]...\fI CONTEXT FILE\fR...
+.br
+.B chcon
+[\fIOPTION\fR]...\fI --reference=RFILE FILE\fR...
+.SH DESCRIPTION
+.PP
+." Add any additional description here
+.PP
+Change the security context of each FILE to CONTEXT.
+.TP
+\fB\-c\fR, \fB\-\-changes\fR
+like verbose but report only when a change is made
+.TP
+\fB\-h\fR, \fB\-\-no\-dereference\fR
+affect symbolic links instead of any referenced file (available only on systems with lchown system call)
+.TP
+\fB\-f\fR, \fB\-\-silent\fR, \fB\-\-quiet\fR
+suppress most error messages
+.TP
+\fB\-l\fR, \fB\-\-range\fR
+set range RANGE in the target security context
+.TP
+\fB\-\-reference\fR=\fIRFILE\fR
+use RFILE's context instead of using a CONTEXT value
+.TP
+\fB\-R\fR, \fB\-\-recursive\fR
+change files and directories recursively
+.TP
+\fB\-r\fR, \fB\-\-role\fR
+set role ROLE in the target security context
+.TP
+\fB\-t\fR, \fB\-\-type\fR
+set type TYPE in the target security context
+.TP
+\fB\-u\fR, \fB\-\-user\fR
+set user USER in the target security context
+.TP
+\fB\-v\fR, \fB\-\-verbose\fR
+output a diagnostic for every file processed
+.TP
+\fB\-\-help\fR
+display this help and exit
+.TP
+\fB\-\-version\fR
+output version information and exit
+.SH "REPORTING BUGS"
+Report bugs to <email@host.com>.
+.SH "SEE ALSO"
+The full documentation for
+.B chcon
+is maintained as a Texinfo manual.  If the
+.B info
+and
+.B chcon
+programs are properly installed at your site, the command
+.IP
+.B info chcon
+.PP
+should give you access to the complete manual.
diff -Nur coreutils-6.4/man/chcon.x coreutils-6.4.selinux/man/chcon.x
--- coreutils-6.4/man/chcon.x	1970-01-01 00:00:00.000000000 +0000
+++ coreutils-6.4.selinux/man/chcon.x	2006-10-31 23:39:34.000000000 +0000
@@ -0,0 +1,4 @@
+[NAME]
+chcon \- change file security context
+[DESCRIPTION]
+.\" Add any additional description here
diff -Nur coreutils-6.4/man/cp.1 coreutils-6.4.selinux/man/cp.1
--- coreutils-6.4/man/cp.1	2006-10-22 19:56:33.000000000 +0000
+++ coreutils-6.4.selinux/man/cp.1	2006-10-31 23:39:34.000000000 +0000
@@ -57,7 +57,7 @@
 .TP
 \fB\-\-preserve\fR[=\fIATTR_LIST\fR]
 preserve the specified attributes (default:
-mode,ownership,timestamps), if possible
+mode,ownership,timestamps) and security contexts, if possible
 additional attributes: links, all
 .TP
 \fB\-\-no\-preserve\fR=\fIATTR_LIST\fR
@@ -106,6 +106,9 @@
 \fB\-\-help\fR
 display this help and exit
 .TP
+\fB\-Z\fR, \fB\-\-context\fR=\fICONTEXT\fR
+set security context of copy to CONTEXT
+.TP
 \fB\-\-version\fR
 output version information and exit
 .PP
diff -Nur coreutils-6.4/man/dir.1 coreutils-6.4.selinux/man/dir.1
--- coreutils-6.4/man/dir.1	2006-10-22 19:56:34.000000000 +0000
+++ coreutils-6.4.selinux/man/dir.1	2006-10-31 23:39:34.000000000 +0000
@@ -204,6 +204,20 @@
 .TP
 \fB\-1\fR
 list one file per line
+.PP
+SELinux options:
+.TP
+\fB\-\-lcontext\fR
+Display security context.   Enable \fB\-l\fR. Lines
+will probably be too wide for most displays.
+.TP
+\fB\-\-context\fR
+Display security context so it fits on most
+displays.  Displays only mode, user, group,
+security context and file name.
+.TP
+\fB\-\-scontext\fR
+Display only security context and file name.
 .TP
 \fB\-\-help\fR
 display this help and exit
diff -Nur coreutils-6.4/man/id.1 coreutils-6.4.selinux/man/id.1
--- coreutils-6.4/man/id.1	2006-10-22 19:56:35.000000000 +0000
+++ coreutils-6.4.selinux/man/id.1	2006-10-31 23:39:34.000000000 +0000
@@ -13,6 +13,9 @@
 \fB\-a\fR
 ignore, for compatibility with other versions
 .TP
+\fB\-Z\fR, \fB\-\-context\fR
+print only the security context
+.TP
 \fB\-g\fR, \fB\-\-group\fR
 print only the effective group ID
 .TP
diff -Nur coreutils-6.4/man/install.1 coreutils-6.4.selinux/man/install.1
--- coreutils-6.4/man/install.1	2006-10-22 19:56:35.000000000 +0000
+++ coreutils-6.4.selinux/man/install.1	2006-10-31 23:39:34.000000000 +0000
@@ -66,6 +66,11 @@
 .TP
 \fB\-v\fR, \fB\-\-verbose\fR
 print the name of each directory as it is created
+.HP
+\fB\-P\fR, \fB\-\-preserve_context\fR (SELinux) Preserve security context
+.TP
+\fB\-Z\fR, \fB\-\-context\fR=\fICONTEXT\fR
+(SELinux) Set security context of files and directories
 .TP
 \fB\-\-help\fR
 display this help and exit
diff -Nur coreutils-6.4/man/ls.1 coreutils-6.4.selinux/man/ls.1
--- coreutils-6.4/man/ls.1	2006-10-22 19:56:35.000000000 +0000
+++ coreutils-6.4.selinux/man/ls.1	2006-10-31 23:39:34.000000000 +0000
@@ -204,6 +204,20 @@
 .TP
 \fB\-1\fR
 list one file per line
+.PP
+SELinux options:
+.TP
+\fB\-\-lcontext\fR
+Display security context.   Enable \fB\-l\fR. Lines
+will probably be too wide for most displays.
+.TP
+\fB\-Z\fR, \fB\-\-context\fR
+Display security context so it fits on most
+displays.  Displays only mode, user, group,
+security context and file name.
+.TP
+\fB\-\-scontext\fR
+Display only security context and file name.
 .TP
 \fB\-\-help\fR
 display this help and exit
diff -Nur coreutils-6.4/man/mkdir.1 coreutils-6.4.selinux/man/mkdir.1
--- coreutils-6.4/man/mkdir.1	2006-10-22 19:56:35.000000000 +0000
+++ coreutils-6.4.selinux/man/mkdir.1	2006-10-31 23:39:34.000000000 +0000
@@ -12,6 +12,8 @@
 .PP
 Mandatory arguments to long options are mandatory for short options too.
 .TP
+\fB\-Z\fR, \fB\-\-context\fR=\fICONTEXT\fR (SELinux) set security context to CONTEXT
+.TP
 \fB\-m\fR, \fB\-\-mode\fR=\fIMODE\fR
 set file mode (as in chmod), not a=rwx \- umask
 .TP
diff -Nur coreutils-6.4/man/mkfifo.1 coreutils-6.4.selinux/man/mkfifo.1
--- coreutils-6.4/man/mkfifo.1	2006-10-22 19:56:35.000000000 +0000
+++ coreutils-6.4.selinux/man/mkfifo.1	2006-10-31 23:39:34.000000000 +0000
@@ -12,6 +12,9 @@
 .PP
 Mandatory arguments to long options are mandatory for short options too.
 .TP
+\fB\-Z\fR, \fB\-\-context\fR=\fICONTEXT\fR
+set security context (quoted string)
+.TP
 \fB\-m\fR, \fB\-\-mode\fR=\fIMODE\fR
 set file permission bits to MODE, not a=rw \- umask
 .TP
diff -Nur coreutils-6.4/man/mknod.1 coreutils-6.4.selinux/man/mknod.1
--- coreutils-6.4/man/mknod.1	2006-10-22 19:56:35.000000000 +0000
+++ coreutils-6.4.selinux/man/mknod.1	2006-10-31 23:39:34.000000000 +0000
@@ -12,6 +12,9 @@
 .PP
 Mandatory arguments to long options are mandatory for short options too.
 .TP
+\fB\-Z\fR, \fB\-\-context\fR=\fICONTEXT\fR
+set security context (quoted string)
+.TP
 \fB\-m\fR, \fB\-\-mode\fR=\fIMODE\fR
 set file permission bits to MODE, not a=rw \- umask
 .TP
diff -Nur coreutils-6.4/man/runcon.1 coreutils-6.4.selinux/man/runcon.1
--- coreutils-6.4/man/runcon.1	1970-01-01 00:00:00.000000000 +0000
+++ coreutils-6.4.selinux/man/runcon.1	2006-10-31 23:39:34.000000000 +0000
@@ -0,0 +1,39 @@
+.TH RUNCON "1" "July 2003" "runcon (coreutils) 5.0" "selinux"
+.SH NAME
+runcon \- run command with specified security context 
+.SH SYNOPSIS
+.B runcon
+[\fI-t TYPE\fR] [\fI-l LEVEL\fR] [\fI-u USER\fR] [\fI-r ROLE\fR] \fICOMMAND\fR [\fIARGS...\fR]
+.PP
+or
+.PP
+.B runcon
+\fICONTEXT\fR \fICOMMAND\fR [\fIargs...\fR]
+.PP
+.br
+.SH DESCRIPTION
+.PP
+.\" Add any additional description here
+.PP
+Run COMMAND with current security context modified by one or more of LEVEL,
+ROLE, TYPE, and USER, or with completely-specified CONTEXT.
+.TP
+\fB\-t\fR
+change current type to the specified type
+.TP
+\fB\-l\fR
+change current level range to the specified range
+.TP
+\fB\-r\fR
+change current role to the specified role
+.TP
+\fB\-u\fR
+change current user to the specified user
+.PP
+If none of \fI-t\fR, \fI-u\fR, \fI-r\fR, or \fI-l\fR, is specified,
+the first argument is used as the complete context.  Any additional
+arguments after \fICOMMAND\fR are interpreted as arguments to the
+command.
+.PP
+Note that only carefully-chosen contexts are likely to successfully
+run.
diff -Nur coreutils-6.4/man/runcon.x coreutils-6.4.selinux/man/runcon.x
--- coreutils-6.4/man/runcon.x	1970-01-01 00:00:00.000000000 +0000
+++ coreutils-6.4.selinux/man/runcon.x	2006-10-31 23:39:34.000000000 +0000
@@ -0,0 +1,2 @@
+[DESCRIPTION]
+.\" Add any additional description here
diff -Nur coreutils-6.4/man/stat.1 coreutils-6.4.selinux/man/stat.1
--- coreutils-6.4/man/stat.1	2006-10-22 19:56:37.000000000 +0000
+++ coreutils-6.4.selinux/man/stat.1	2006-10-31 23:39:34.000000000 +0000
@@ -28,6 +28,9 @@
 \fB\-t\fR, \fB\-\-terse\fR
 print the information in terse form
 .TP
+\fB\-Z\fR, \fB\-\-context\fR
+print security context information for SELinux if available.
+.TP
 \fB\-\-help\fR
 display this help and exit
 .TP
@@ -51,6 +54,9 @@
 %d
 Device number in decimal
 .TP
+%C
+SELinux security context
+.TP
 %D
 Device number in hex
 .TP
diff -Nur coreutils-6.4/man/vdir.1 coreutils-6.4.selinux/man/vdir.1
--- coreutils-6.4/man/vdir.1	2006-10-22 19:56:39.000000000 +0000
+++ coreutils-6.4.selinux/man/vdir.1	2006-10-31 23:39:34.000000000 +0000
@@ -204,6 +204,20 @@
 .TP
 \fB\-1\fR
 list one file per line
+.PP
+SELinux options:
+.TP
+\fB\-\-lcontext\fR
+Display security context.   Enable \fB\-l\fR. Lines
+will probably be too wide for most displays.
+.TP
+\fB\-\-context\fR
+Display security context so it fits on most
+displays.  Displays only mode, user, group,
+security context and file name.
+.TP
+\fB\-\-scontext\fR
+Display only security context and file name.
 .TP
 \fB\-\-help\fR
 display this help and exit
diff -Nur coreutils-6.4/po/POTFILES.in coreutils-6.4.selinux/po/POTFILES.in
--- coreutils-6.4/po/POTFILES.in	2006-10-31 23:38:15.000000000 +0000
+++ coreutils-6.4.selinux/po/POTFILES.in	2006-10-31 23:39:34.000000000 +0000
@@ -33,6 +33,7 @@
 src/base64.c
 src/basename.c
 src/cat.c
+src/chcon.c
 src/chgrp.c
 src/chmod.c
 src/chown-core.c
@@ -91,6 +92,7 @@
 src/remove.c
 src/rm.c
 src/rmdir.c
+src/runcon.c
 src/seq.c
 src/setuidgid.c
 src/shred.c
--- coreutils-6.7/po/pl.po.orig	2006-12-09 20:03:10.686071942 +0100
+++ coreutils-6.7/po/pl.po	2006-12-09 20:06:54.942851606 +0100
@@ -867,6 +867,95 @@
 msgid "%s: input file is output file"