Renaming policy for courier-imap to match upstream naming standards.

Package-Manager: portage-2.1.9.25/cvs/Linux x86_64

5 files changed, 254 insertions, 0 deletions

diff --git a/sec-policy/selinux-courier/ChangeLog b/sec-policy/selinux-courier/ChangeLog
new file mode 100644
index 000000000000..346a772ecae0
--- /dev/null
+++ b/sec-policy/selinux-courier/ChangeLog
@@ -0,0 +1,178 @@
+# ChangeLog for sec-policy/selinux-courier
+# Copyright 1999-2011 Gentoo Foundation; Distributed under the GPL v2
+# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-courier/ChangeLog,v 1.1 2011/03/07 02:32:30 blueness Exp $
+
+  07 Mar 2011; Anthony G. Basile <blueness@gentoo.org>
+  +files/fix-services-courier-r1.patch,
+  +selinux-courier-2.20101213-r1.ebuild, +metadata.xml:
+  Renaming policy from courier-imap to match upstream naming standards.
+
+*selinux-courier-2.20101213-r1 (04 Mar 2011)
+
+  04 Mar 2011; <swift@gentoo.org> +files/fix-services-courier-r1.patch,
+  +selinux-courier-2.20101213-r1.ebuild, +metadata.xml:
+  Fix file contexts
+
+*selinux-courier-imap-2.20101213 (05 Feb 2011)
+
+  05 Feb 2011; Anthony G. Basile <blueness@gentoo.org>
+  +selinux-courier-imap-2.20101213.ebuild:
+  New upstream policy.
+
+*selinux-courier-imap-2.20091215 (16 Dec 2009)
+
+  16 Dec 2009; Chris PeBenito <pebenito@gentoo.org>
+  +selinux-courier-imap-2.20091215.ebuild:
+  New upstream release.
+
+  14 Aug 2009; Chris PeBenito <pebenito@gentoo.org>
+  -selinux-courier-imap-20070329.ebuild,
+  -selinux-courier-imap-20070928.ebuild,
+  selinux-courier-imap-20080525.ebuild:
+  Mark 20080525 stable, clear old ebuilds.
+
+*selinux-courier-imap-2.20090730 (03 Aug 2009)
+
+  03 Aug 2009; Chris PeBenito <pebenito@gentoo.org>
+  +selinux-courier-imap-2.20090730.ebuild:
+  New upstream release.
+
+  18 Jul 2009; Chris PeBenito <pebenito@gentoo.org>
+  selinux-courier-imap-20070329.ebuild,
+  selinux-courier-imap-20070928.ebuild,
+  selinux-courier-imap-20080525.ebuild:
+  Drop alpha, mips, ppc, sparc selinux support.
+
+*selinux-courier-imap-20080525 (25 May 2008)
+
+  25 May 2008; Chris PeBenito <pebenito@gentoo.org>
+  +selinux-courier-imap-20080525.ebuild:
+  New SVN snapshot.
+
+  16 Mar 2008; Chris PeBenito <pebenito@gentoo.org>
+  -selinux-courier-imap-20050417.ebuild,
+  -selinux-courier-imap-20050607.ebuild,
+  -selinux-courier-imap-20050628.ebuild,
+  -selinux-courier-imap-20061114.ebuild:
+  Remove old ebuilds.
+
+  03 Feb 2008; Chris PeBenito <pebenito@gentoo.org>
+  selinux-courier-imap-20070928.ebuild:
+  Mark stable.
+
+*selinux-courier-imap-20070928 (26 Nov 2007)
+
+  26 Nov 2007; Chris PeBenito <pebenito@gentoo.org>
+  +selinux-courier-imap-20070928.ebuild:
+  New SVN snapshot.
+
+  29 Aug 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
+  Removing kaiowas from metadata due to his retirement (see #61930 for
+  reference).
+
+  04 Jun 2007; Chris PeBenito <pebenito@gentoo.org>
+  selinux-courier-imap-20070329.ebuild:
+  Mark stable.
+
+*selinux-courier-imap-20070329 (29 Mar 2007)
+
+  29 Mar 2007; Chris PeBenito <pebenito@gentoo.org>
+  +selinux-courier-imap-20070329.ebuild:
+  New SVN snapshot.
+
+  22 Feb 2007; Markus Ullmann <jokey@gentoo.org> ChangeLog:
+  Redigest for Manifest2
+
+*selinux-courier-imap-20061114 (15 Nov 2006)
+
+  15 Nov 2006; Chris PeBenito <pebenito@gentoo.org>
+  +selinux-courier-imap-20061114.ebuild:
+  New SVN snapshot.
+
+*selinux-courier-imap-20061008 (10 Oct 2006)
+
+  10 Oct 2006; Chris PeBenito <pebenito@gentoo.org>
+  +selinux-courier-imap-20061008.ebuild:
+  First mainstream reference policy testing release.
+
+  29 Jun 2005; petre rodan <kaiowas@gentoo.org>
+  selinux-courier-imap-20050628.ebuild:
+  mark stable
+
+*selinux-courier-imap-20050628 (28 Jun 2005)
+
+  28 Jun 2005; petre rodan <kaiowas@gentoo.org>
+  +selinux-courier-imap-20050628.ebuild:
+  fc change needed by policycoreutils-1.24
+
+  27 Jun 2005; petre rodan <kaiowas@gentoo.org>
+  selinux-courier-imap-20050607.ebuild:
+  mark stable
+
+*selinux-courier-imap-20050607 (26 Jun 2005)
+
+  26 Jun 2005; petre rodan <kaiowas@gentoo.org>
+  -selinux-courier-imap-20050219.ebuild,
+  +selinux-courier-imap-20050607.ebuild:
+  policy cleanup with no semantic diff
+
+  23 Apr 2005; petre rodan <kaiowas@gentoo.org> :
+  mark stable
+
+*selinux-courier-imap-20050417 (17 Apr 2005)
+
+  17 Apr 2005; petre rodan <kaiowas@gentoo.org>
+  +selinux-courier-imap-20050417.ebuild:
+  merge with upstream and fix for bug #89321
+
+  23 Mar 2005; petre rodan <kaiowas@gentoo.org>
+  selinux-courier-imap-20050219.ebuild:
+  mark stable
+
+*selinux-courier-imap-20050219 (25 Feb 2005)
+
+  25 Feb 2005; petre rodan <kaiowas@gentoo.org>
+  -selinux-courier-imap-20040928.ebuild,
+  +selinux-courier-imap-20050219.ebuild:
+  removed 3 port defs not present upstream
+
+  20 Jan 2005; petre rodan <kaiowas@gentoo.org>
+  selinux-courier-imap-20050105.ebuild:
+  mark stable
+
+*selinux-courier-imap-20050105 (06 Jan 2005)
+
+  06 Jan 2005; petre rodan <kaiowas@gentoo.org>
+  -selinux-courier-imap-20041122.ebuild,
+  +selinux-courier-imap-20050105.ebuild:
+  policy that supports courier-authlib and >=courier-imap-4.0
+
+*selinux-courier-imap-20041122 (12 Dec 2004)
+
+  12 Dec 2004; petre rodan <kaiowas@gentoo.org>
+  -selinux-courier-imap-20040406.ebuild,
+  +selinux-courier-imap-20041122.ebuild:
+  policy tweaks needed by latest versions of c-i
+
+  28 Oct 2004; petre rodan <kaiowas@gentoo.org>
+  selinux-courier-imap-20040928.ebuild:
+  mark stable
+
+*selinux-courier-imap-20040928 (23 Oct 2004)
+
+  23 Oct 2004; petre rodan <kaiowas@gentoo.org> metadata.xml,
+  +selinux-courier-imap-20040928.ebuild:
+  Fix for courier-imap 3.0.5
+
+*selinux-courier-imap-20040406 (06 Apr 2004)
+
+  06 Apr 2004; Chris PeBenito <pebenito@gentoo.org>
+  selinux-courier-imap-20040406.ebuild:
+  Fixes for courier-imap 3.0.2, from bug #45917.
+
+*selinux-courier-imap-20040203 (03 Feb 2004)
+
+  03 Feb 2004; Chris PeBenito <pebenito@gentoo.org> metadata.xml,
+  selinux-courier-imap-20040203.ebuild:
+  Initial commit.  Submitted by Petre Rodan.
+
diff --git a/sec-policy/selinux-courier/Manifest b/sec-policy/selinux-courier/Manifest
new file mode 100644
index 000000000000..ae8fd950bfef
--- /dev/null
+++ b/sec-policy/selinux-courier/Manifest
@@ -0,0 +1,5 @@
+AUX fix-services-courier-r1.patch 2628 RMD160 87c22453d19e9fb068a20b8103b51605b6e2fb81 SHA1 8be3fcdfe8f3314583a94f074ced2e59908f831b SHA256 111546e079912c38d805820e8bb073e4b29f99114c8049f41433c74f18a9968d
+DIST refpolicy-2.20101213.tar.bz2 559450 RMD160 4858f792f4db5b179de6fb8419a626c29d59bdd3 SHA1 0e881e99b8950a358eadc44633551ca10f12eaee SHA256 b691ee8f6066cc19bb0d4384fe3be277d97d22e9d4ac2db0c252065e8c3535de
+EBUILD selinux-courier-2.20101213-r1.ebuild 560 RMD160 0f2a9d7dceb8c842b1b7b6b2f7468712656d9387 SHA1 af6a18a2c3a806f64439ba23165449e72e44283c SHA256 d3078edf83af9f43a167c2b9b5e3b6f4214cc87dd81df1cd3299f9724fb91188
+MISC ChangeLog 5521 RMD160 8274e1d5a3b66a156ae0e648c4fcf0877d1d63f5 SHA1 dfdff414e16d338672d5d9e79e5c1fc8be2584a6 SHA256 d5dc0dbb3e3157875a1bd78e62d8d6841fd30dbe05bc22207afe4f848c755424
+MISC metadata.xml 231 RMD160 2edd1a1bd6245c475242111369bb31d63a0d6776 SHA1 3ce7a2229304d133fab727eedbf0474f6841b02b SHA256 24e517a12858d48c4c1885b602b0dd991eb2beadd3fc693e6b00ad89a93f46b7
diff --git a/sec-policy/selinux-courier/files/fix-services-courier-r1.patch b/sec-policy/selinux-courier/files/fix-services-courier-r1.patch
new file mode 100644
index 000000000000..24745b532655
--- /dev/null
+++ b/sec-policy/selinux-courier/files/fix-services-courier-r1.patch
@@ -0,0 +1,48 @@
+--- services/courier.te	2010-12-13 15:11:02.000000000 +0100
++++ services/courier.te	2011-03-03 16:27:16.660999997 +0100
+@@ -37,7 +37,7 @@
+ #
+ 
+ allow courier_authdaemon_t self:capability { setuid setgid sys_tty_config };
+-allow courier_authdaemon_t self:unix_stream_socket connectto;
++allow courier_authdaemon_t self:unix_stream_socket {  create_stream_socket_perms connectto };
+ 
+ can_exec(courier_authdaemon_t, courier_exec_t)
+ 
+@@ -52,7 +52,9 @@
+ allow courier_authdaemon_t courier_tcpd_t:tcp_socket rw_stream_socket_perms;
+ allow courier_authdaemon_t courier_tcpd_t:fifo_file rw_file_perms;
+ 
++manage_dirs_pattern(courier_authdaemon_t, courier_var_lib_t, courier_var_lib_t)
+ manage_sock_files_pattern(courier_authdaemon_t, courier_spool_t, courier_spool_t)
++manage_sock_files_pattern(courier_authdaemon_t, courier_var_lib_t, courier_var_lib_t)
+ files_search_spool(courier_authdaemon_t)
+ 
+ corecmd_search_bin(courier_authdaemon_t)
+--- services/courier.fc	2010-08-03 15:11:05.000000000 +0200
++++ services/courier.fc	2011-03-03 16:36:53.994999997 +0100
+@@ -5,8 +5,10 @@
+ /usr/sbin/courierlogger			--	gen_context(system_u:object_r:courier_exec_t,s0)
+ /usr/sbin/courierldapaliasd		--	gen_context(system_u:object_r:courier_exec_t,s0)
+ /usr/sbin/couriertcpd			--	gen_context(system_u:object_r:courier_tcpd_exec_t,s0)
+-
+-/usr/lib(64)?/courier/authlib/.*	--	gen_context(system_u:object_r:courier_authdaemon_exec_t,s0)
++ifdef(`distro_gentoo',`
++/usr/lib(64)?/courier-imap/couriertcpd	--	gen_context(system_u:object_r:courier_tcpd_exec_t,s0)
++')
++/usr/lib(64)?/courier/(courier-)?authlib/.*	--	gen_context(system_u:object_r:courier_authdaemon_exec_t,s0)
+ /usr/lib(64)?/courier/courier/.*	--	gen_context(system_u:object_r:courier_exec_t,s0)
+ /usr/lib(64)?/courier/courier/courierpop.* --	gen_context(system_u:object_r:courier_pop_exec_t,s0)
+ /usr/lib(64)?/courier/courier/imaplogin --	gen_context(system_u:object_r:courier_pop_exec_t,s0)
+@@ -16,9 +18,9 @@
+ /usr/lib(64)?/courier/rootcerts(/.*)?		gen_context(system_u:object_r:courier_etc_t,s0)
+ /usr/lib(64)?/courier/sqwebmail/cleancache\.pl -- gen_context(system_u:object_r:sqwebmail_cron_exec_t,s0)
+ 
+-/var/lib/courier(/.*)?			--	gen_context(system_u:object_r:courier_var_lib_t,s0)
++/var/lib/courier(/.*)?				gen_context(system_u:object_r:courier_var_lib_t,s0)
+ 
+-/var/run/courier(/.*)?			--	gen_context(system_u:object_r:courier_var_run_t,s0)
++/var/run/courier(/.*)?				gen_context(system_u:object_r:courier_var_run_t,s0)
+ 
+ /var/spool/authdaemon(/.*)?			gen_context(system_u:object_r:courier_spool_t,s0)
+ /var/spool/courier(/.*)?			gen_context(system_u:object_r:courier_spool_t,s0)
diff --git a/sec-policy/selinux-courier/metadata.xml b/sec-policy/selinux-courier/metadata.xml
new file mode 100644
index 000000000000..97a61d6f57cd
--- /dev/null
+++ b/sec-policy/selinux-courier/metadata.xml
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd">
+<pkgmetadata>
+	<herd>selinux</herd>
+	<longdescription>Gentoo SELinux policy for courier</longdescription>
+</pkgmetadata>
diff --git a/sec-policy/selinux-courier/selinux-courier-2.20101213-r1.ebuild b/sec-policy/selinux-courier/selinux-courier-2.20101213-r1.ebuild
new file mode 100644
index 000000000000..e8a7fe1a21ca
--- /dev/null
+++ b/sec-policy/selinux-courier/selinux-courier-2.20101213-r1.ebuild
@@ -0,0 +1,17 @@
+# Copyright 1999-2011 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-courier/selinux-courier-2.20101213-r1.ebuild,v 1.1 2011/03/07 02:32:30 blueness Exp $
+
+MODS="courier"
+IUSE=""
+
+inherit selinux-policy-2
+
+DESCRIPTION="SELinux policy for courier-imap"
+
+KEYWORDS="~amd64 ~x86"
+RDEPEND="!<=sec-policy/selinux-courier-imap-2.20101213
+		>=sys-apps/policycoreutils-1.30.30
+		>=sec-policy/selinux-base-policy-${PV}"
+
+POLICY_PATCH="${FILESDIR}/fix-services-courier-r1.patch"