blob: c497c52639fbb50964353838236c93efec85adf4 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
|
# Copyright 1999-2005 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/app-admin/setools/setools-1.5.1.ebuild,v 1.2 2005/01/01 11:25:12 eradicator Exp $
DESCRIPTION="SELinux policy tools"
HOMEPAGE="http://www.tresys.com/selinux_policy_tools.html"
SRC_URI="http://www.tresys.com/Downloads/selinux-tools/${P}.tgz"
LICENSE="GPL-2"
SLOT="0"
KEYWORDS="~x86 ~ppc ~amd64"
IUSE="X gtk selinux"
DEPEND="sys-devel/bison
sys-devel/flex
dev-libs/libxml2
dev-util/pkgconfig
selinux? ( sys-libs/libselinux )
X? ( dev-lang/tk gtk? ( >=gnome-base/libglade-2.0 ) )"
RDEPEND="dev-libs/libxml2
selinux? ( sys-libs/libselinux )
X? (
dev-lang/tk
>=dev-tcltk/bwidget-1.4.1
gtk? ( >=gnome-base/libglade-2.0 )
)"
src_unpack() {
unpack ${A}
cd ${S}
# fix the Makefile to listen to portage CFLAGS
sed -i -e "s:-O2:${CFLAGS}:" ${S}/Makefile
# generate the file contexts from the template
sed -e 's:SEUSER_BINDIR:/usr/bin:' \
-e 's:SEUSER_INSTALL_LIBDIR:/usr/share/setools:' \
< ${S}/policy/seuser_template.fc > ${S}/policy/seuser.fc
# dont chcon or install -Z
sed -i -e '/object_r/d' ${S}/secmds/Makefile
sed -i -e '/object_r/d' ${S}/seuser/Makefile
sed -i -e 's,-Z system_u:object_r:etc_t,,g' ${S}/seaudit/Makefile
# dont do findcon, replcon, searchcon, or indexcon if USE=-selinux
if ! use selinux; then
sed -i -e '/^USE_LIBSELINUX/s/1/0/' ${S}/Makefile
sed -i -e '/^SE_CMDS/s/replcon//' \
-e '/^SE_CMDS/s/findcon//' \
-e '/^SE_CMDS/s/searchcon//' \
-e '/^SE_CMDS/s/indexcon//' ${S}/secmds/Makefile
fi
# adjust policy settings in seuser.conf
echo "policy_dir ${POLICYDIR}" > ${S}/seuser/seuser.conf
echo "policy.conf ${POLICYDIR}/policy.conf" >> ${S}/seuser/seuser.conf
echo "file_contexts_file ${POLICYDIR}/file_contexts/file_contexts" >> ${S}/seuser/seuser.conf
echo "user_file ${POLICYDIR}/users" >> ${S}/seuser/seuser.conf
}
src_compile() {
cd ${S}
# build command line tools
make all-nogui || die "command line tools compile failed"
if use X; then
make apol sepcut seuserx \
|| die "apol, sepcut, or seuserx compile failed"
if use gtk; then
make seaudit || die "seaudit compile failed."
fi
fi
}
src_install() {
cd ${S}
dodoc COPYING ChangeLog-setools README
# some of the Makefiles are broken, and will fail
# if ${D}/usr/bin is nonexistant
dodir /usr/bin
# command line tools
make DESTDIR=${D} install-secmds \
|| die "secmds install failed."
if use X; then
# graphical tools
make DESTDIR=${D} install-apol install-sepcut \
|| die "apol and sepcut install failed."
if use gtk; then
make DESTDIR=${D} install-seaudit \
|| die "seaudit install failed."
# make DESTDIR=${D} -C seaudit install-logwatch-service \
# || die "logwatch install failed."
fi
fi
if use selinux; then
if use X; then
make DESTDIR=${D} install-seuserx \
|| die "seuserx install failed."
else
make DESTDIR=${D} install-seuser \
|| die "seuser install failed."
fi
insinto ${POLICYDIR}/domains/program
doins ${S}/policy/seuser.te
insinto ${POLICYDIR}/file_contexts/program
doins ${S}/policy/seuser.fc
fi
}
pkg_postinst() {
if use selinux; then
einfo "A policy for the seuser program has been installed into"
einfo "${POLICYDIR}. Please reload your policy and relabel"
einfo "setools: rlpkg setools"
fi
}
|