Accepting request 913166 from home:dmulder:branches:security:idm:no_selinux
- Disable selinux where not supported; (jsc#SLE-18456). OBS-URL: https://build.opensuse.org/request/show/913166 OBS-URL: https://build.opensuse.org/package/show/security:idm/cepces?expand=0&rev=6
This commit is contained in:
Git OBS Bridge
parent
8b7838fd02
commit
febfaf2aeb
@ -1,3 +1,8 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Thu Aug 19 14:39:17 UTC 2021 - David Mulder <dmulder@suse.com>
|
||||||
|
|
||||||
|
- Disable selinux where not supported; (jsc#SLE-18456).
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Mon Jul 19 14:32:34 UTC 2021 - David Mulder <dmulder@suse.com>
|
Mon Jul 19 14:32:34 UTC 2021 - David Mulder <dmulder@suse.com>
|
||||||
|
|
||||||
|
|||||||
12
cepces.spec
12
cepces.spec
@ -31,7 +31,9 @@ Source0: %{name}-%{version}.tar.bz2
|
|||||||
BuildArch: noarch
|
BuildArch: noarch
|
||||||
|
|
||||||
Requires: %{app_name}-certmonger == %{version}
|
Requires: %{app_name}-certmonger == %{version}
|
||||||
|
%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
|
||||||
Requires: %{app_name}-selinux == %{version}
|
Requires: %{app_name}-selinux == %{version}
|
||||||
|
%endif
|
||||||
Requires: python3-%{app_name} == %{version}
|
Requires: python3-%{app_name} == %{version}
|
||||||
|
|
||||||
%description
|
%description
|
||||||
@ -64,6 +66,7 @@ Requires: certmonger
|
|||||||
%{app_name} is an application for enrolling certificates through CEP and CES.
|
%{app_name} is an application for enrolling certificates through CEP and CES.
|
||||||
This package provides the certmonger integration.
|
This package provides the certmonger integration.
|
||||||
|
|
||||||
|
%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
|
||||||
%package selinux
|
%package selinux
|
||||||
Summary: SELinux support for %{app_name}
|
Summary: SELinux support for %{app_name}
|
||||||
|
|
||||||
@ -74,6 +77,7 @@ Requires(post): selinux-policy-targeted
|
|||||||
|
|
||||||
%description selinux
|
%description selinux
|
||||||
SELinux support for %{app_name}
|
SELinux support for %{app_name}
|
||||||
|
%endif
|
||||||
|
|
||||||
%prep
|
%prep
|
||||||
%setup -q -n %{app_name}-%{version}
|
%setup -q -n %{app_name}-%{version}
|
||||||
@ -81,17 +85,20 @@ SELinux support for %{app_name}
|
|||||||
%build
|
%build
|
||||||
%py3_build
|
%py3_build
|
||||||
|
|
||||||
|
%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
|
||||||
# Build the SELinux module(s).
|
# Build the SELinux module(s).
|
||||||
for SELINUXVARIANT in %{selinux_variants}; do
|
for SELINUXVARIANT in %{selinux_variants}; do
|
||||||
make -C selinux clean all
|
make -C selinux clean all
|
||||||
mv -v selinux/%{app_name}.pp selinux/%{app_name}-${SELINUXVARIANT}.pp
|
mv -v selinux/%{app_name}.pp selinux/%{app_name}-${SELINUXVARIANT}.pp
|
||||||
done
|
done
|
||||||
|
%endif
|
||||||
|
|
||||||
%install
|
%install
|
||||||
%py3_install
|
%py3_install
|
||||||
|
|
||||||
install -d -m 0700 %{buildroot}%{logdir}
|
install -d -m 0700 %{buildroot}%{logdir}
|
||||||
|
|
||||||
|
%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
|
||||||
# Install the SELinux module(s).
|
# Install the SELinux module(s).
|
||||||
rm -fv selinux-files.txt
|
rm -fv selinux-files.txt
|
||||||
|
|
||||||
@ -103,6 +110,7 @@ for SELINUXVARIANT in %{selinux_variants}; do
|
|||||||
echo %{_datadir}/selinux/${SELINUXVARIANT}/%{app_name}.pp >> \
|
echo %{_datadir}/selinux/${SELINUXVARIANT}/%{app_name}.pp >> \
|
||||||
selinux-files.txt
|
selinux-files.txt
|
||||||
done
|
done
|
||||||
|
%endif
|
||||||
|
|
||||||
# Install configuration files.
|
# Install configuration files.
|
||||||
install -d %{buildroot}%{_sysconfdir}/%{app_name}
|
install -d %{buildroot}%{_sysconfdir}/%{app_name}
|
||||||
@ -121,6 +129,7 @@ install -p -m 755 bin/%{app_name}-submit \
|
|||||||
|
|
||||||
sed -i 's/\/usr\/bin\/env python3/\/usr\/bin\/python3/g' %{buildroot}%{_libexecdir}/certmonger/%{app_name}-submit
|
sed -i 's/\/usr\/bin\/env python3/\/usr\/bin\/python3/g' %{buildroot}%{_libexecdir}/certmonger/%{app_name}-submit
|
||||||
|
|
||||||
|
%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
|
||||||
%post selinux
|
%post selinux
|
||||||
for SELINUXVARIANT in %{selinux_variants}; do
|
for SELINUXVARIANT in %{selinux_variants}; do
|
||||||
%{_sbindir}/semodule -n -s ${SELINUXVARIANT} \
|
%{_sbindir}/semodule -n -s ${SELINUXVARIANT} \
|
||||||
@ -142,6 +151,7 @@ then
|
|||||||
fi
|
fi
|
||||||
done
|
done
|
||||||
fi
|
fi
|
||||||
|
%endif
|
||||||
|
|
||||||
%post certmonger
|
%post certmonger
|
||||||
# Install the CA into certmonger.
|
# Install the CA into certmonger.
|
||||||
@ -177,7 +187,9 @@ popd
|
|||||||
%dir %{_libexecdir}/certmonger
|
%dir %{_libexecdir}/certmonger
|
||||||
%{_libexecdir}/certmonger/%{app_name}-submit
|
%{_libexecdir}/certmonger/%{app_name}-submit
|
||||||
|
|
||||||
|
%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
|
||||||
%files selinux -f selinux-files.txt
|
%files selinux -f selinux-files.txt
|
||||||
%defattr(0644,root,root,0755)
|
%defattr(0644,root,root,0755)
|
||||||
|
%endif
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user