í«îÛ    policycoreutils-newrole-2.8-lp151.4.6.1                                             Ž­è         <   >     ,     è            ê          ì          5„‰ ^Upx¸‹/Ô=½Â„²Wý,Náæ÷­à:@,Ú>´+n±ÏVxê‡üEn€]*$›·ÃN®çORo¢ïþükÖðkÇQtðèf £ðÐ›^³\§-ûþ*%öƒ5ßñ«­¢\ ä–ÝäsC(üÕüÄŒÆa°.×ÿ¢Æ–=[A²CËˆ5³MíJw vv˜Pó-‡P¥êéÕ/æü™m»£•ë.SÝŒØO¸`µh2õ·.³©ˆh©ŸŸå<òŸQ(cdùnž¥ì2=ÊëMaPÒ`‰·¦¶#úHáîL“nÔÁ<«8ÝJwvznçµ‰†¶¯pÒYPS–+^.Ä)®–[ž¬Í!ïÀúÈJÒ$þ7V   >   ÿÿÿÀ       Ž­è       B  ,L   ?     ,<      d            è           é           ê           ì   	   *     í   	   O     î      ´     ï      ¸     ñ      Ä     ò      È     ó      Û     ö      ä     ÷      õ     ø   	       ü     $     ý     N     þ     T           [          À          Ì     	     Ò     
     Ø          ä          §          ¬          ¸          Ç          Ö                               d          ¸          ±     (     ð     7     ÷     8     8     9     œ     :     ƒ     >     (8     C     (@     F     (H     G     (\     H     (h     I     (t     X     (x     Y     („     \     (´     ]     (À     ^     (Ý     b     )     c     )±     d     *J     e     *O     f     *R     l     *T     u     *h     v     *t     w     +”     x     +      y     +¬     z     +Ü     “     +ì     Æ     +ð     ä     +ö     å     ,8   C policycoreutils-newrole 2.8 lp151.4.6.1 The newrole application for RBAC/MLS RBAC/MLS policy machines require newrole as a way of changing the role
or level of a logged-in user. ^Upxcloud130      p¯openSUSE Leap 15.1 openSUSE GPL-2.0-or-later http://bugs.opensuse.org Productivity/Security https://github.com/SELinuxProject/selinux linux x86_64 
  if [ -x /usr/bin/chkstat ]; then 
    /usr/bin/chkstat -n --set --system /usr/bin/newrole 
  fi      ¬  jØ  +¤í¤      ^Upo^Ups^Upod6c3383bc3eb83619f08800945c081855daa06f4cfc218a99b2992a9dafc0358 54946c870a7542f06fd447569b83df848e8c01b5e702778f8a5719a76389046f 1c2949f380bc90589b841badda751bc1abec7d9b939ee3454af5fc49688f6593                root root root root root root policycoreutils-2.8-lp151.4.6.1.src.rpm   ÿÿÿÿÿÿÿ¿ÿÿÿÿconfig(policycoreutils-newrole) policycoreutils-newrole policycoreutils-newrole(x86-64)      !     @   @   @   @   @   @   @   @   @   @   @   @         
  
  
  
/bin/sh /bin/sh config(policycoreutils-newrole) libaudit.so.1()(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.2.5)(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libc.so.6(GLIBC_2.8)(64bit) libpam.so.0()(64bit) libpam.so.0(LIBPAM_1.0)(64bit) libpam_misc.so.0()(64bit) libpam_misc.so.0(LIBPAM_MISC_1.0)(64bit) libselinux.so.1()(64bit) permissions policycoreutils rpmlib(CompressedFileNames) rpmlib(FileDigests) rpmlib(PayloadFilesHavePrefix) rpmlib(PayloadIsXz)   2.8-lp151.4.6.1              2.8 3.0.4-1 4.6.0-1 4.0-1 5.2-1 4.14.1 
   /usr/bin/chkstat -n --warn --system -e /usr/bin/newrole 1>&2 ^9\À]øÃ@\dÀ\X)@\8…@\3?@\
`À\
`À[õHÀ[ä%@[Ç$@Zü@Zç@Zá¿@ZàmÀZº2@Z²I@Z°÷ÀZ;¢@Zþ@Z	ÀXWËÀW“\@W‡~ÀTZ@Johannes Segitz <jsegitz@suse.com> Johannes Segitz <jsegitz@suse.com> jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com Marcus Rueckert <mrueckert@suse.de> jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com mcepl@suse.com dimstar@opensuse.org jsegitz@suse.com jsegitz@suse.com tchvatal@suse.com jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com rbrown@suse.com jsegitz@suse.com jsegitz@novell.com jengelh@inai.de jsegitz@novell.com jsegitz@novell.com - Added seobject_late_init.patch to prevent failures when loading
  seobject on systems without policies (bsc#1162674) - Added chcat_join.patch to prevent joining non-existing categories
  (bsc#1159262) - Make sure current devel package conflicts with old
  policycoreutils-python (bsc#1124437) - Removed hardcoded python 3.6 path from spec file - Required python3-policycoreutils instead of just recommending it
  for policycoreutils (bsc#1121455)
- Added requires for python3-setuptools to python3-policycoreutils
  (bsc#1121455)
- Removed requires for audit-libs-python from policycoreutils
  (bsc#1121455) - properly obsolete/provides for policycoreutils-python
- remove unneeded obsolete from the devel package - Don't require selinux-policy-devel for the devel package - Obsolete policycoreutils-python in policycoreutils and
  policycoreutils-devel to prevent file conflicts - Included content of selinux-python-2.8 and semodule-utils-2.8.
  I think it's easier to have all the relevant binaries in the
  policycoreutils package (bsc#1116596).
  Added make_targets.patch for this
- Removed restorecond, is now a separate package
- Added python3.patch to use python3 interpreter
- New runtime requires:
  * libsepol1
  * python3-ipy
  * python3-networkx
  * python3-semanage
- Provides and obsolete policycoreutils-python - Adjusted source urls (bsc#1115052) - Update to version 2.8 (bsc#1111732)
  For changes please see
  https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20180524/RELEASE-20180524.txt - Rebase to 2.7
  * Rather large rewrite of the SPEC file
  * Significantly, support for python2 removed
  For changes please see
  https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20170804/RELEASE-20170804.txt
- Dropped patches:
  * policycoreutils-initscript.patch
  * policycoreutils-pam-common.patch
  * loadpolicy_path.patch
  * CVE-2018-1063.patch - Don't build policycoreutils-gui for anything suse_version >=
  1500: there is no reason te believe that SLE16 will have those
  old, depreacted dependencies back. Fixes also the issues for
  Tumbleweed, where -gui was not installable. - SLE 15 doesn't have the necessary files for policycoreutils-gui,
  don't build it there - Drop the requirement for selinux-policy for the gui tools. - Drop SLE11 support, needs the audit that is not present on SLE11
- Fix service link to actually work on current releases
- Drop SUSE_ASNEEDED=0 as it seems to build fine without it
- Do not depend on systemd, just systemd-rpm-macros - Added CVE-2018-1063.patch to prevent chcon from following symlinks in
  /tmp, /var/tmp, /var/run and /var/lib/debug (bsc#1083624, CVE-2018-1063) - Remove BuildRequires for libcgroup-devel (bsc#1085837) - Removed BuildRequires for setools-devel and added new
  runtime requirement for python2-networkx - Replace references to /var/adm/fillup-templates with new
  %_fillupdir macro (boo#1069468) - Update to policycoreutils version 2.6. Notable changes:
  * setfiles: reverse the sense of -D option
  * sandbox: Use dbus-run-session instead of dbus-launch when available
  * setfiles: Utility to find security.restorecon_last entries
  * setfiles: Add option to stop setting the digest
  * hll/pp: Change warning for module name not matching filename to match new behavior
  * sepolicy: convert to setools4
  * sandbox: create a new session for sandboxed processes
  * sandbox: do not try to setup directories without -X or -M
  * sandbox: do not run xmodmap in a new X session
  * sandbox: fix file labels on copied files
  * semanage: Fix semanage fcontext -D
  * semanage: Default serange to "s0" for port modify
  * semanage: Use socket.getprotobyname for protocol
  * semanage: Add auditing of changes in records
  * Improve compatibility with Python 3
  * Update sandbox types in sandbox manual
  * hll/pp: Warn if module name different than output filename
- Update to sepolgen version 2.6. Notable changes:
  * Add support for TYPEBOUNDS statement in INTERFACE policy files
- Dropped CVE-2016-7545_sandbox_escape.patch - Added CVE-2016-7545_sandbox_escape.patch to fix CVE-2016-7545, bsc#1000998
  Sandboxed session could have escaped to the parent session - Trim description in line with other selinux packages - Changes submitted by MargueriteSu:
  Update to version 2.5
  * sepolicy: Do not overwrite CFLAGS, from Nicolas Iooss.
  * sepolicy: Rename policy global variable conflict, from Nicolas Iooss.
  * newrole: Add missing defined in #if, from Nicolas Iooss.
  * newrole: Add description of missing parameter -p in newrole man page, from Lukas Vrabec.
  * secon: Add missing descriptions for --*-key params in secon man page, from Lukas Vrabec
  * semanage: List reserve_port_t in semanage port -l, from Petr Lautrbach.
  * chcat: Add a fallback in case os.getlogin() returns nothing, from Laurent Bigonville.
  * semanage: fix 'semanage permissions -l' subcommand, from Petr Lautrbach.
  * semanage: replace string.join() with str.join(), from Petr Lautrbach.
  * Man page warning fixes, from Ville SkyttÃ¤.
  * sandbox: Fix sandbox to propagate specified MCS/MLS Security Level, from Miroslav Grepl.
  * semanage: Require at least one argument for 'semanage permissive -d', from Petr Lautrbach.
  * sepolicy: Improve sepolicy command line interface, from Petr Lautrbach.
  * audit2allow/why: ignore setlocale errors, from Petr Lautrbach.
  * semodule: Add --extract/-E, --cil/-c, and --hll/-H to extract modules, from Yuli Khodorkovskiy.
  * audit2allow: Comment constraint rules in output, from Miroslav Grepl via Petr Lautrbach.
  * Fix PEP8 issues, from Jason Zaman.
  * semanage: fix moduleRecords deleteall method, from Stephen Smalley.
  * Improve compatibility with Python 3, from Michal Srb.
  * semanage: Set self.sename to sename after calling semanage_seuser_set_sename(), from Laurent Bigonville.
  * semanage: Fix typo in semanage args for minimium policy store, from Petr Lautrbach.
  * sepolicy: Only invoke RPM on RPM-enabled Linux distributions, from Sven Vermeulen.
  * mcstransd: don't reinvent getpeercon, from Stephen Smalley.
  * setfiles/restorecon: fix -r/-R option, from Petr Lautrbach.
  * org.selinux.policy: Require auth_admin_keep for all actions, from Stephen Smalley.
  * hll: Move core functions of pp to libsepol, from James Carter
  * run_init: Use a ring buffer in open_init_pty, from Jason Zaman.
  * run_init: fix open_init_pty availability check, from Nicolas Iooss.
  * Widen Xen IOMEM context entries, from Daniel De Graaf.
  * Fix -Wformat errors with gcc-5.0.0, from Petr Lautrbach.
  * Fixed typo/grammatical error, from Christopher Peterson.
  * Fix typo in semanage-port man page, from Andrew Spiers.
  Update to version 2.4
  * Fix bugs found by hardened gcc flags, from Nicolas Iooss.
  * Improve support for building with different versions of python from
    Nicolas Iooss.
  * Ensure XDG_RUNTIME_DIR is passed through to the sandbox in seunshare,
    from Dan Walsh
  * Remove cgroups from sandbox, from Dan Walsh
  * Try to use setcurrent before setexec in seunshare, from Andy Lutomirski
  * Stop using the now deprecated flask.h and av_permissions.h, from Stephen Smalley
  * Add a store root path in semodule, from Yuli Khodorkovskiy
  * Add a flag to ignore cached CIL files and recompile HLL modules, from
    Yuli Khodorkovskiy
  * Add and install HLL compiler for policy packages to CIL. The compiler is
    installed in /var/libexec/selinux/hll/ by default, from Steve Lawrence
  * Fixes to pp compiler to better support roles and type attributes, from
    Yuli Khodorkovskiy
  * Deprecate base/upgrade/version in semodule. Calling these commands will
    now call --install on the backend, from Yuli Khodorkovskiy
  * Add ability to install modules with a specified priority, from Caleb
    Case
  * Use /tmp for permissive module creation, by Caleb Case
  * Update semanage to use new source policy infrastructure, from Jason Dana
  * Add RuntimeDirectory to mcstrans systemd unit file, from Laurent
    Bigonville - added Requires: python-yum, yum-metadata-parser to fix sepolicy
  (bnc#903841) /bin/sh /bin/sh cloud130 1582657656                               2.8-lp151.4.6.1 2.8-lp151.4.6.1 2.8-lp151.4.6.1           newrole newrole newrole.1.gz /etc/pam.d/ /usr/bin/ /usr/share/man/man1/ -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g obs://build.opensuse.org/openSUSE:Maintenance:12036/openSUSE_Leap_15.1_Update/5dc076e9f5028fb51a41df10d00a8737-policycoreutils.openSUSE_Leap_15.1_Update drpm xz 5 x86_64-suse-linux             ASCII text ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, BuildID[sha1]=df0a72a724dce7366b7ba0016f62d7389337a041, for GNU/Linux 3.2.0, stripped troff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)                          R  R  R  R  	R  R  R  R  R  
R  R  R  èyØ=5²,RaÉÃ¿éÁ   utf-8 473a8b73a409fdc1ee9edb50fbac16e6ec2a42345aa78e06b04ca2647c72ddb7        ?   ÿÿûà   ý7zXZ  
áû¡ !   t/å£àL®] "ÌkÀ%®Åƒ?õ«<2ÿ9Vè
¬Þmí-àmf€ûr©ÈƒiÝzãZ7©„ë1Þ¾7N…¥Z)é‰Bæ@¥]
ï8ÛM¤ÆÓP×}©$/Ü©õ:„¿”ä³›xkkw¤ù¸Í"é‡ªÁ2ív?4ßÌ¦­¡§/©f’Ä|aàMw6æ÷Ž_?¿eøjªåC=ª[
ÝêQó$Eº%T³ZŠ†¯SåñÕõQÕ±èŸƒrŠ6qvXrÂ!Ä²<Hv•w–6ô^çˆ9¤rvKÞ]ï?žœæ¿¶´°œ‘'Ã<èZ–ƒÛÅX#2\vzËH«oˆ„pçª8ŠAjn ~ ow¼sÌž>Â˜^¡ÿÚÓ‰@Ã0aŽwÀê.s™Oißã†?@'Û.êOMÙn‡wÌ.Æ‚BøÆUK*Ó]4iŸåú-› ¨`„ÇnÜÆñì÷þ¨_ã–6VA(Qá”f—F&Œ%àD@;¹¹Z^b•¤ÌG¡0­ ]t8W?“q‘æã=I]7¬šçø	ÖþKo¦&ôÕÅl¶ÖrŽQ
‡à€;2·n5°(–kÕÄ`O¡TæçYÎ—~ÕÚb¦’OÉ­kP"MÃ–1 q†½ÛË@~ö¢V“±¯Ð éCWŒóY^%öý%ê«ýnPÊ^¹÷e;€€øéüÃØ£K{J¦–Œ/3â¡tß´9nƒg¦SÏì4(Î°²ìà‡7r¯ºév¥ôYÓ'e4Aêâ’~Üá+ŠÎÔm6Á":õ¬üU²ÙíÖïLÊ‡ãa0!&¶bJÃžƒ¤ç}oEm†êùÊcáÛ,Ì|hûæá¡/«ÂâM^jzÈž÷P{@ŸT¶uÊ2ËÈ‰?Øts¬j‹ŸÖAß'CÏ³íÛ8!sdjërV¯îïÒ°ËˆÅE°ý¡¿póÜÑËÿ{-K†¹…sÎù0¬Ü+‘Ô›!}»Þ‰ÇÖb·Àx%J_wíæM€¬)îˆ@é£/'¯mÜºàð|^yÑÈàËGº•„žsÐ]‘¨‰ÿ}ŽÓ¿EÅ‚ÏŸLï„S­fIÏh¥+h€‚£Ì0t½fåö¥Ù4Lè’Öa½O¤!6“)€°B‘sÝ\Ú&±qv¾†m&¶ÒÇ’ø]ÁßÛÅÉs|ãe45gk­8UT~u8r (¼v/’'˜
q±h=›ç/,%=Z²Î$ÔHdrŠÖm°4µl—ØLå™.šéx½ãO'B‘%ÑÏIvß«œÖ‘â"éÒüí]­€;Ñºt|hrI§©Å“¼ôËÁWg@+‹0y¨’­_ÁâU…ÔÃ–dË÷`aÁ&oÃiŽÝÂ~ÈH-‘çcøËNmCº&•°¥b§r­§zFo!:‹¤Í×oÞëÆ¼I•¡+8,€9VT'Ó]s÷…-Ü`ßnÞ’ÆYXl³‰‡(S!±7K6Ð[RˆGÞ7£ãÝpaOÓ~1²]¼æ+r
£MB°z«IÝÑûò‚„6Hç¶W%-ÚJ‹½Pd¹8-P    ?XVG4—3d•ÃàîÚøº»iae,îa©ùèõi¼ â	Í0  nß…5¶éß    
YZ