# # Conditional build: %bcond_without dist_kernel # without distribution kernel %bcond_without kernel # don't build kernel modules %bcond_without userspace # don't build userspace module # %define rel 1 Summary: Capability Override LSM Summary(pl.UTF-8): Moduł LSM Capability Override Name: CapOver Version: 0.9.3 Release: %{rel} License: GPL Group: Base/Kernel Source0: http://files.randombit.net/cap_over/%{name}-%{version}.tgz # Source0-md5: 971e50c1abaa97ee4a9958e92dd88300 Patch0: %{name}-register_sysctl.patch URL: http://www.randombit.net/projects/cap_over/ %{?with_dist_kernel:BuildRequires: kernel-module-build >= 3:2.6.20.2} BuildRequires: rpmbuild(macros) >= 1.379 BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n) %description The Capability Override LSM, is a kernel module which gives the ability to specify that certain users/groups/programs are to gain access to one or more extra capabilities. This means this LSM is a permissive module, rather than a restrictive one (which is more typical of LSMs). %description -l pl.UTF-8 Capability Override LSM to moduł jądra dający możliwość określenia pewnych użytkowników/grup/programów mogących mieć dostęp do jednego lub większej liczby uprawnień (capabilities). Oznacza to, że ten LSM jest modułem zezwalającym, a nie restrykcyjnym (co jest bardziej typowe dla LSM). %package -n kernel%{_alt_kernel}-misc-cap_over Summary: cap_over kernel module Summary(pl.UTF-8): Moduł jądra cap_over Release: %{rel}@%{_kernel_ver_str} Group: Base/Kernel %{?with_dist_kernel:%requires_releq_kernel} Requires(post,postun): /sbin/depmod Requires: CapOver %description -n kernel%{_alt_kernel}-misc-cap_over cap_over kernel module. %description -n kernel%{_alt_kernel}-misc-cap_over -l pl.UTF-8 Moduł jądra cap_over. %prep %setup -q %patch0 -p1 %build %if %{with kernel} %configure \ --with-linux="%{_kernelsrcdir}" %build_kernel_modules -m cap_over %endif %install rm -rf $RPM_BUILD_ROOT %if %{with kernel} %install_kernel_modules -d misc -m cap_over %endif %if %{with userspace} install -d $RPM_BUILD_ROOT/sbin install policy.pl $RPM_BUILD_ROOT/sbin %endif %clean rm -rf $RPM_BUILD_ROOT %post -n kernel%{_alt_kernel}-misc-cap_over %depmod %{_kernel_ver} %postun -n kernel%{_alt_kernel}-misc-cap_over %depmod %{_kernel_ver} %if %{with userspace} %files %defattr(644,root,root,755) %doc readme.txt doc/[e-t]* %attr(755,root,root) /sbin/policy.pl %endif %if %{with kernel} %files -n kernel%{_alt_kernel}-misc-cap_over %defattr(644,root,root,755) /lib/modules/%{_kernel_ver}/misc/* %endif