Djam/pam
1
0
Fork 0
mirror of https://abf.rosa.ru/djam/pam.git synced 2025-02-23 16:32:51 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Enabled selinux support

Browse source
This commit is contained in:
din (Dmitry Fedorov) 2013-03-05 12:44:56 +04:00
parent 921ca38237
commit b2b8142e45
1 changed files with 14 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

19
pam.spec
View file

@ -19,7 +19,7 @@ Epoch: 1
Summary: A security tool which provides authentication for applications Summary: A security tool which provides authentication for applications
Name: pam Name: pam
Version: 1.1.4 Version: 1.1.4
Release: 8 Release: 9
# The library is BSD licensed with option to relicense as GPLv2+ - this option is redundant # The library is BSD licensed with option to relicense as GPLv2+ - this option is redundant
# as the BSD license allows that anyway. pam_timestamp and pam_console modules are GPLv2+, # as the BSD license allows that anyway. pam_timestamp and pam_console modules are GPLv2+,
License: BSD and GPLv2+ License: BSD and GPLv2+
@ -72,6 +72,7 @@ Patch702: Linux-PAM-1.1.4-add-now-missing-nis-constant.patch
# (akdengi> add user to default group users which need for Samba # (akdengi> add user to default group users which need for Samba
Patch801: Linux-PAM-1.1.4-group_add_users.patch Patch801: Linux-PAM-1.1.4-group_add_users.patch
BuildRequires: selinux-devel >= 2.1.6-7
BuildRequires: bison BuildRequires: bison
BuildRequires: cracklib-devel BuildRequires: cracklib-devel
BuildRequires: flex BuildRequires: flex
@ -205,7 +206,8 @@ CFLAGS="$RPM_OPT_FLAGS -fPIC -I%{_includedir}/db_nss -D_GNU_SOURCE" \
--includedir=%{_includedir}/security \ --includedir=%{_includedir}/security \
--with-db-uniquename=_nss \ --with-db-uniquename=_nss \
--docdir=%{_docdir}/%{name} \ --docdir=%{_docdir}/%{name} \
--disable-selinux --enable-selinux \
--enable-audit
%make %make
%install %install
@ -238,13 +240,13 @@ rm -f %{buildroot}/%{_lib}/*.la
# (blino) we don't want to test if SE Linux is built, it's disabled # (blino) we don't want to test if SE Linux is built, it's disabled
# Make sure every module subdirectory gave us a module. Yes, this is hackish. # Make sure every module subdirectory gave us a module. Yes, this is hackish.
for dir in modules/pam_* ; do for dir in modules/pam_* ; do
if [ -d ${dir} ] && [[ "${dir}" != "modules/pam_selinux" ]] && [[ "${dir}" != "modules/pam_sepermit" ]]; then #if [ -d ${dir} ] && [[ "${dir}" != "modules/pam_selinux" ]] && [[ "${dir}" != "modules/pam_sepermit" ]]; then
[[ "${dir}" = "modules/pam_tally" ]] && continue # [[ "${dir}" = "modules/pam_tally" ]] && continue
if ! ls -1 %{buildroot}/%{_lib}/security/`basename ${dir}`*.so ; then if ! ls -1 %{buildroot}/%{_lib}/security/`basename ${dir}`*.so ; then
echo ERROR `basename ${dir}` did not build a module. echo ERROR `basename ${dir}` did not build a module.
exit 1 exit 1
fi fi
fi #fi
done done
# Check for module problems. Specifically, check that every module we just # Check for module problems. Specifically, check that every module we just
@ -295,6 +297,7 @@ fi
%config(noreplace) %{_sysconfdir}/security/namespace.conf %config(noreplace) %{_sysconfdir}/security/namespace.conf
%attr(755,root,root) %config(noreplace) %{_sysconfdir}/security/namespace.init %attr(755,root,root) %config(noreplace) %{_sysconfdir}/security/namespace.init
%config(noreplace) %{_sysconfdir}/security/pam_env.conf %config(noreplace) %{_sysconfdir}/security/pam_env.conf
%config(noreplace) %{_sysconfdir}/security/sepermit.conf
%config(noreplace) %{_sysconfdir}/security/time.conf %config(noreplace) %{_sysconfdir}/security/time.conf
%config(noreplace) %{_sysconfdir}/security/opasswd %config(noreplace) %{_sysconfdir}/security/opasswd
%dir %{_sysconfdir}/security/console.apps %dir %{_sysconfdir}/security/console.apps
@ -326,3 +329,9 @@ fi
%files doc %files doc
%doc doc/txts doc/specs/rfc86.0.txt Copyright %doc doc/txts doc/specs/rfc86.0.txt Copyright
%changelog
* Tue Feb 26 2013 Alexander Romanov <a.romanov@rosa-ntcit.ru>
- Enabled selinux support