í«îÛ    policycoreutils-newrole-2.8-lp151.4.6.1                                             Ž­è         <   >     ,     è            ê          ì          5X‰ ^Up°¸‹/Ô=½Â„­ùþ?cp±›¦‚>‘Þc]¸ê…×5ä©|PªÒÈŽÐÀ/ÔÿKfÅSï	Yz›/­Q¹¸óWâËI"z³ƒº‡]Âò›½BMwøz‚AY#zEà'&!“r«& ›•.=YÆïeôÿ…IïjþýüÂÆêƒVÆÌªoõ]’à0Å‘Àù7—ÌÆt& +•ÃX•¥žš+Ã6³–×¼ðÑ¬H€ÕqÐkÑ¿+Qöx9Lº‡û44¹’Vï›!³Ò–µÙ8ü)”GFmËù¥ÅCÞweï•ð!pêóÒ˜â(2"Tí á#~¯5Ë03þ/­Ž˜Í	µÑßˆ ý<ÁÎ šŒŸ ÈkW¼ébì‡ˆLh² ŸÆ   >   ÿÿÿÀ       Ž­è       B  ,$   ?     ,      d            è           é           ê           ì   	   *     í   	   O     î      ´     ï      ¸     ñ      Ä     ò      È     ó      Û     ö      ä     ÷      õ     ø   	       ü     $     ý     N     þ     T           \          À          Ì     	     Ò     
     Ø          ä          §          ¬          ¸          Ç          Ö                               h          ´          ‚     (     ¿     7     Æ     8          9     l     :     S     >     (     C     (     F     (     G     (0     H     (<     I     (H     X     (L     Y     (X     \     (ˆ     ]     (”     ^     (±     b     (Ü     c     )…     d     *$     e     *)     f     *,     l     *.     u     *D     v     *P     w     +t     x     +€     y     +Œ   
  z     +´     “     +Ä     Æ     +È     ä     +Î     å     ,   C policycoreutils-newrole 2.8 lp151.4.6.1 The newrole application for RBAC/MLS RBAC/MLS policy machines require newrole as a way of changing the role
or level of a logged-in user. ^Up°obs-arm-1    ?openSUSE Leap 15.1 openSUSE GPL-2.0-or-later http://bugs.opensuse.org Productivity/Security https://github.com/SELinuxProject/selinux linux aarch64 
  if [ -x /usr/bin/chkstat ]; then 
    /usr/bin/chkstat -n --set --system /usr/bin/newrole 
  fi     ¬ h  +¤í¤      ^Up•^Up¢^Up•d6c3383bc3eb83619f08800945c081855daa06f4cfc218a99b2992a9dafc0358 80277a9290f6a32b3f58f83b26d4416b8043797eea00724952de582d223e4ae6 1c2949f380bc90589b841badda751bc1abec7d9b939ee3454af5fc49688f6593                root root root root root root policycoreutils-2.8-lp151.4.6.1.src.rpm   ÿÿÿÿÿÿÿ¿ÿÿÿÿconfig(policycoreutils-newrole) policycoreutils-newrole policycoreutils-newrole(aarch-64)        !     @   @   @   @   @   @   @   @   @   @         
  
  
  
/bin/sh /bin/sh config(policycoreutils-newrole) ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libaudit.so.1()(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libpam.so.0()(64bit) libpam.so.0(LIBPAM_1.0)(64bit) libpam_misc.so.0()(64bit) libpam_misc.so.0(LIBPAM_MISC_1.0)(64bit) libselinux.so.1()(64bit) permissions policycoreutils rpmlib(CompressedFileNames) rpmlib(FileDigests) rpmlib(PayloadFilesHavePrefix) rpmlib(PayloadIsXz)   2.8-lp151.4.6.1            2.8 3.0.4-1 4.6.0-1 4.0-1 5.2-1 4.14.1 
   /usr/bin/chkstat -n --warn --system -e /usr/bin/newrole 1>&2  ^9\À]øÃ@\dÀ\X)@\8…@\3?@\
`À\
`À[õHÀ[ä%@[Ç$@Zü@Zç@Zá¿@ZàmÀZº2@Z²I@Z°÷ÀZ;¢@Zþ@Z	ÀXWËÀW“\@W‡~ÀTZ@Johannes Segitz <jsegitz@suse.com> Johannes Segitz <jsegitz@suse.com> jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com Marcus Rueckert <mrueckert@suse.de> jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com mcepl@suse.com dimstar@opensuse.org jsegitz@suse.com jsegitz@suse.com tchvatal@suse.com jsegitz@suse.com jsegitz@suse.com jsegitz@suse.com rbrown@suse.com jsegitz@suse.com jsegitz@novell.com jengelh@inai.de jsegitz@novell.com jsegitz@novell.com - Added seobject_late_init.patch to prevent failures when loading
  seobject on systems without policies (bsc#1162674) - Added chcat_join.patch to prevent joining non-existing categories
  (bsc#1159262) - Make sure current devel package conflicts with old
  policycoreutils-python (bsc#1124437) - Removed hardcoded python 3.6 path from spec file - Required python3-policycoreutils instead of just recommending it
  for policycoreutils (bsc#1121455)
- Added requires for python3-setuptools to python3-policycoreutils
  (bsc#1121455)
- Removed requires for audit-libs-python from policycoreutils
  (bsc#1121455) - properly obsolete/provides for policycoreutils-python
- remove unneeded obsolete from the devel package - Don't require selinux-policy-devel for the devel package - Obsolete policycoreutils-python in policycoreutils and
  policycoreutils-devel to prevent file conflicts - Included content of selinux-python-2.8 and semodule-utils-2.8.
  I think it's easier to have all the relevant binaries in the
  policycoreutils package (bsc#1116596).
  Added make_targets.patch for this
- Removed restorecond, is now a separate package
- Added python3.patch to use python3 interpreter
- New runtime requires:
  * libsepol1
  * python3-ipy
  * python3-networkx
  * python3-semanage
- Provides and obsolete policycoreutils-python - Adjusted source urls (bsc#1115052) - Update to version 2.8 (bsc#1111732)
  For changes please see
  https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20180524/RELEASE-20180524.txt - Rebase to 2.7
  * Rather large rewrite of the SPEC file
  * Significantly, support for python2 removed
  For changes please see
  https://raw.githubusercontent.com/wiki/SELinuxProject/selinux/files/releases/20170804/RELEASE-20170804.txt
- Dropped patches:
  * policycoreutils-initscript.patch
  * policycoreutils-pam-common.patch
  * loadpolicy_path.patch
  * CVE-2018-1063.patch - Don't build policycoreutils-gui for anything suse_version >=
  1500: there is no reason te believe that SLE16 will have those
  old, depreacted dependencies back. Fixes also the issues for
  Tumbleweed, where -gui was not installable. - SLE 15 doesn't have the necessary files for policycoreutils-gui,
  don't build it there - Drop the requirement for selinux-policy for the gui tools. - Drop SLE11 support, needs the audit that is not present on SLE11
- Fix service link to actually work on current releases
- Drop SUSE_ASNEEDED=0 as it seems to build fine without it
- Do not depend on systemd, just systemd-rpm-macros - Added CVE-2018-1063.patch to prevent chcon from following symlinks in
  /tmp, /var/tmp, /var/run and /var/lib/debug (bsc#1083624, CVE-2018-1063) - Remove BuildRequires for libcgroup-devel (bsc#1085837) - Removed BuildRequires for setools-devel and added new
  runtime requirement for python2-networkx - Replace references to /var/adm/fillup-templates with new
  %_fillupdir macro (boo#1069468) - Update to policycoreutils version 2.6. Notable changes:
  * setfiles: reverse the sense of -D option
  * sandbox: Use dbus-run-session instead of dbus-launch when available
  * setfiles: Utility to find security.restorecon_last entries
  * setfiles: Add option to stop setting the digest
  * hll/pp: Change warning for module name not matching filename to match new behavior
  * sepolicy: convert to setools4
  * sandbox: create a new session for sandboxed processes
  * sandbox: do not try to setup directories without -X or -M
  * sandbox: do not run xmodmap in a new X session
  * sandbox: fix file labels on copied files
  * semanage: Fix semanage fcontext -D
  * semanage: Default serange to "s0" for port modify
  * semanage: Use socket.getprotobyname for protocol
  * semanage: Add auditing of changes in records
  * Improve compatibility with Python 3
  * Update sandbox types in sandbox manual
  * hll/pp: Warn if module name different than output filename
- Update to sepolgen version 2.6. Notable changes:
  * Add support for TYPEBOUNDS statement in INTERFACE policy files
- Dropped CVE-2016-7545_sandbox_escape.patch - Added CVE-2016-7545_sandbox_escape.patch to fix CVE-2016-7545, bsc#1000998
  Sandboxed session could have escaped to the parent session - Trim description in line with other selinux packages - Changes submitted by MargueriteSu:
  Update to version 2.5
  * sepolicy: Do not overwrite CFLAGS, from Nicolas Iooss.
  * sepolicy: Rename policy global variable conflict, from Nicolas Iooss.
  * newrole: Add missing defined in #if, from Nicolas Iooss.
  * newrole: Add description of missing parameter -p in newrole man page, from Lukas Vrabec.
  * secon: Add missing descriptions for --*-key params in secon man page, from Lukas Vrabec
  * semanage: List reserve_port_t in semanage port -l, from Petr Lautrbach.
  * chcat: Add a fallback in case os.getlogin() returns nothing, from Laurent Bigonville.
  * semanage: fix 'semanage permissions -l' subcommand, from Petr Lautrbach.
  * semanage: replace string.join() with str.join(), from Petr Lautrbach.
  * Man page warning fixes, from Ville SkyttÃ¤.
  * sandbox: Fix sandbox to propagate specified MCS/MLS Security Level, from Miroslav Grepl.
  * semanage: Require at least one argument for 'semanage permissive -d', from Petr Lautrbach.
  * sepolicy: Improve sepolicy command line interface, from Petr Lautrbach.
  * audit2allow/why: ignore setlocale errors, from Petr Lautrbach.
  * semodule: Add --extract/-E, --cil/-c, and --hll/-H to extract modules, from Yuli Khodorkovskiy.
  * audit2allow: Comment constraint rules in output, from Miroslav Grepl via Petr Lautrbach.
  * Fix PEP8 issues, from Jason Zaman.
  * semanage: fix moduleRecords deleteall method, from Stephen Smalley.
  * Improve compatibility with Python 3, from Michal Srb.
  * semanage: Set self.sename to sename after calling semanage_seuser_set_sename(), from Laurent Bigonville.
  * semanage: Fix typo in semanage args for minimium policy store, from Petr Lautrbach.
  * sepolicy: Only invoke RPM on RPM-enabled Linux distributions, from Sven Vermeulen.
  * mcstransd: don't reinvent getpeercon, from Stephen Smalley.
  * setfiles/restorecon: fix -r/-R option, from Petr Lautrbach.
  * org.selinux.policy: Require auth_admin_keep for all actions, from Stephen Smalley.
  * hll: Move core functions of pp to libsepol, from James Carter
  * run_init: Use a ring buffer in open_init_pty, from Jason Zaman.
  * run_init: fix open_init_pty availability check, from Nicolas Iooss.
  * Widen Xen IOMEM context entries, from Daniel De Graaf.
  * Fix -Wformat errors with gcc-5.0.0, from Petr Lautrbach.
  * Fixed typo/grammatical error, from Christopher Peterson.
  * Fix typo in semanage-port man page, from Andrew Spiers.
  Update to version 2.4
  * Fix bugs found by hardened gcc flags, from Nicolas Iooss.
  * Improve support for building with different versions of python from
    Nicolas Iooss.
  * Ensure XDG_RUNTIME_DIR is passed through to the sandbox in seunshare,
    from Dan Walsh
  * Remove cgroups from sandbox, from Dan Walsh
  * Try to use setcurrent before setexec in seunshare, from Andy Lutomirski
  * Stop using the now deprecated flask.h and av_permissions.h, from Stephen Smalley
  * Add a store root path in semodule, from Yuli Khodorkovskiy
  * Add a flag to ignore cached CIL files and recompile HLL modules, from
    Yuli Khodorkovskiy
  * Add and install HLL compiler for policy packages to CIL. The compiler is
    installed in /var/libexec/selinux/hll/ by default, from Steve Lawrence
  * Fixes to pp compiler to better support roles and type attributes, from
    Yuli Khodorkovskiy
  * Deprecate base/upgrade/version in semodule. Calling these commands will
    now call --install on the backend, from Yuli Khodorkovskiy
  * Add ability to install modules with a specified priority, from Caleb
    Case
  * Use /tmp for permissive module creation, by Caleb Case
  * Update semanage to use new source policy infrastructure, from Jason Dana
  * Add RuntimeDirectory to mcstrans systemd unit file, from Laurent
    Bigonville - added Requires: python-yum, yum-metadata-parser to fix sepolicy
  (bnc#903841) /bin/sh /bin/sh obs-arm-1 1582657712                                  2.8-lp151.4.6.1 2.8-lp151.4.6.1 2.8-lp151.4.6.1           newrole newrole newrole.1.gz /etc/pam.d/ /usr/bin/ /usr/share/man/man1/ -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g obs://build.opensuse.org/openSUSE:Maintenance:12036/openSUSE_Leap_15.1_Update_ports/5dc076e9f5028fb51a41df10d00a8737-policycoreutils.openSUSE_Leap_15.1_Update drpm xz 5 aarch64-suse-linux              ASCII text ELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-, BuildID[sha1]=dca645c5e1fd84659c8eeb54ce4c508429d268a0, for GNU/Linux 3.7.0, stripped troff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)                     
    R  R  R  	R  R  R  R  
R  R  R  ÄÈqRŠ%ø¦Ñx¼Ÿ_é   utf-8 c22d646511a319858c713e5341216a54e6cefebb9c41fec8e35c3c66ba6743fd        ?   ÿÿûà   ý7zXZ  
áû¡ !   t/å£àG©] "ÌkÀ%®Åƒ?õ«<2ÿ9Vè
¬Þmí-àmf€ûr©ÈƒiÝzãZ7©„æî¾dR‡‡buPÙ>`
*þ–5s´®å`raª¢‹¡~)¤[£ÂŸtBîj—^ôâ2úãø®vKÁ¶œ´“„söS”vO*–"RDWË·Yî3u}œ.oÛSŠÉË@ˆ¡·N}L§³£œ(|++OõÖ8úÜÎÍ“>¬åIÞqàÂ¹³ÚÎÍn:S_!}?l:P#Ì7°
7UD²Ç‚\â.Ðµ®«sÔ4úðŽˆüþéò«ÿÌI³Ðo¸ÿëÆj)Ä¶¾×±Ž…} «^›3æ©(Âˆ­¢ê$ò@ûtÓÜs©'Æ˜òÔw–%23wÈ.-\>¦ÿXƒ¨r6qõÑ¢ýÙ÷ÒàÛ	I¹j;åk„Ó“Å(—K¥‡ëXYhAèM˜DxQzË­¬Tf‹3þ`b=šƒ8ƒ­$=â¦L{9fu®[©ß'é Û_gJÍ4Õ´2"³Ñb?qM)š“…þ;úsÔ·Æ£Ð¢|Ú,¾k”v/jzÛÇÎáUÈ®HÂ7šB8=„êLÙ¡_?Ê9‹|^s½Ð†I<#½TŒ’ä×F~ƒd‰ú
cûoTÕõ‘s:íZB¥-®ÛhCv«¹ ù£·jÁê.üB¾-Sèy¢í˜&9J8R	„Ž|qIñJn°l1íöRL!Ö8À$F«t-ò%¯˜,¤ú¿Icº	Ì`4"?½r¸’k¾{En(‡ ØË¼U®ÚJ`"Ê`Ã®³í`j’fð‘ÙYñ's²ñ"ÈÝw+sëè£et×ßSQ‡µ4°Vù6Áw7§_1d®‚–`+ìGp6~ÝÎ\Ò­9\>ÿÕÒ67è®€ëÔ•Éºó;´ù_gož|”+µ?ÓIF.”¢ÇÀ¢CÉ‹iD+›ËÓ*‰ª@“5‹ø§S¡‡(GÄ»QaT2}|¹×‰•‡©(©‡Ü‰êˆ‰áXûöe~(FJ¦†ŽÏÎØ`AÚ[E‡c€Ÿ0hËæ‹‰Ù¼þ‡“¼X˜(Ž xå¿ë{®Eò 4ÂR <QQýñ‡ÒGè¯øeÂ!'¡²¥ù FÆ•YÉ5ØÞ$ù°PØjÿ Fn¼>ŠWŸ]Ò6¤«¹9kÃÐ{$žñ§»°Äˆ6NÅ²‘õtP}Ð6°‚â¤+Ú‹‹Y‹@Jš=i=[’O¿å³ÃV±«A0á@€"¿Â(r3¾´CwúHà^§²Ñ«Y•{¹³oÆ¶$­³B‚‡ižÂS(FïãÃÔ‘V—î£Ìeîš| …Êfæú¢€õ4Ìê\¤OB{%ìHV¤1çÁŠŸRY%°²×{sg@âéð•Anô{9W=BfËny)ÏY˜Ì¹2myµw×3Y%L¾ÐA\üœgˆÙ&O÷Ÿ¼\ìuiµ³‹ü>K#¨ÿÇhóË!!Ý2PòR9’H¦^uH9–›È
=D®'l°®U Æñ/„x;Í+W¸4@    ÝFŽzepÊÐHÀmà„xá5¡0)XÍ§]Z™ ¤- Ý	È0  $šw÷¶éß    
YZ