mirror of
https://github.com/SELinuxProject/setools
synced 2025-02-23 07:37:02 +00:00
21864a7ea6
- Add an iterator to extract the extended permissions rather than returning only a string - Add queries for determining if an avrule is extended, and what its type the extended avrule is (e.g. ioctl) - Removed tests, but should probably revert that change and make sure they still work - Fixed some warnings about unsigned/signed comparisons with ebitmaps - Updates seinfo and sesearch to support new extended avrule changes Signed-off-by: Steve Lawrence <slawrence@tresys.com>
160 lines
6.7 KiB
Python
160 lines
6.7 KiB
Python
#!/usr/bin/env python
|
|
|
|
import glob
|
|
from setuptools import setup
|
|
import distutils.log as log
|
|
from distutils.core import Extension
|
|
from distutils.cmd import Command
|
|
from distutils.unixccompiler import UnixCCompiler
|
|
from setuptools.command.build_ext import build_ext
|
|
import subprocess
|
|
import sys
|
|
import os
|
|
from os.path import join
|
|
|
|
|
|
class YaccCommand(Command):
|
|
description = "Build yacc parsers."
|
|
user_options = []
|
|
|
|
def initialize_options(self):
|
|
pass
|
|
|
|
def finalize_options(self):
|
|
pass
|
|
|
|
def run(self):
|
|
command = ['bison', '-y', '-d', 'libqpol/policy_parse.y',
|
|
'-o', 'libqpol/policy_parse.c']
|
|
self.announce("Generating parser", level=log.INFO)
|
|
self.announce(' '.join(command), level=log.INFO)
|
|
subprocess.check_call(command)
|
|
|
|
|
|
class LexCommand(Command):
|
|
description = "Build lex scanners."
|
|
user_options = []
|
|
|
|
def initialize_options(self):
|
|
pass
|
|
|
|
def finalize_options(self):
|
|
pass
|
|
|
|
def run(self):
|
|
command = [
|
|
'flex', '-o', 'libqpol/policy_scan.c', 'libqpol/policy_scan.l']
|
|
self.announce("Generating scanner", level=log.INFO)
|
|
self.announce(' '.join(command), level=log.INFO)
|
|
subprocess.check_call(command)
|
|
|
|
|
|
class BuildExtCommand(build_ext):
|
|
|
|
def run(self):
|
|
self.run_command('build_yacc')
|
|
self.run_command('build_lex')
|
|
build_ext.run(self)
|
|
|
|
|
|
try:
|
|
static_sepol = os.environ['SEPOL']
|
|
except KeyError:
|
|
# try to find libsepol.a. The find_library_file function
|
|
# chooses dynamic libraries over static ones, so
|
|
# this assumes that the static lib is in the same directory
|
|
# as the dynamic lib.
|
|
dynamic_sepol = UnixCCompiler().find_library_file(['/usr/lib64', '/usr/lib'], 'sepol')
|
|
static_sepol = dynamic_sepol.replace(".so", ".a")
|
|
|
|
ext_py_mods = [Extension('setools.policyrep._qpol',
|
|
['setools/policyrep/qpol.i',
|
|
'libqpol/avrule_query.c',
|
|
'libqpol/bool_query.c',
|
|
'libqpol/bounds_query.c',
|
|
'libqpol/class_perm_query.c',
|
|
'libqpol/cond_query.c',
|
|
'libqpol/constraint_query.c',
|
|
'libqpol/context_query.c',
|
|
'libqpol/default_object_query.c',
|
|
'libqpol/expand.c',
|
|
'libqpol/fs_use_query.c',
|
|
'libqpol/ftrule_query.c',
|
|
'libqpol/genfscon_query.c',
|
|
'libqpol/isid_query.c',
|
|
'libqpol/iterator.c',
|
|
'libqpol/mls_query.c',
|
|
'libqpol/mlsrule_query.c',
|
|
'libqpol/module.c',
|
|
'libqpol/module_compiler.c',
|
|
'libqpol/netifcon_query.c',
|
|
'libqpol/nodecon_query.c',
|
|
'libqpol/permissive_query.c',
|
|
'libqpol/polcap_query.c',
|
|
'libqpol/policy.c',
|
|
'libqpol/policy_define.c',
|
|
'libqpol/policy_extend.c',
|
|
'libqpol/portcon_query.c',
|
|
'libqpol/queue.c',
|
|
'libqpol/rbacrule_query.c',
|
|
'libqpol/role_query.c',
|
|
'libqpol/syn_rule_query.c',
|
|
'libqpol/terule_query.c',
|
|
'libqpol/type_query.c',
|
|
'libqpol/user_query.c',
|
|
'libqpol/util.c',
|
|
'libqpol/policy_parse.c',
|
|
'libqpol/policy_scan.c',
|
|
'libqpol/xen_query.c'],
|
|
include_dirs=['libqpol', 'libqpol/include'],
|
|
libraries=['bz2', 'selinux', 'sepol'],
|
|
extra_compile_args=['-Werror', '-Wextra',
|
|
'-Waggregate-return',
|
|
'-Wcast-align',
|
|
'-Wfloat-equal',
|
|
'-Wformat', '-Wformat=2',
|
|
'-Winit-self', '-Winline',
|
|
'-Wmissing-format-attribute',
|
|
'-Wmissing-include-dirs',
|
|
'-Wnested-externs',
|
|
'-Wold-style-definition',
|
|
'-Wpointer-arith',
|
|
'-Wredundant-decls',
|
|
'-Wstrict-prototypes',
|
|
'-Wunknown-pragmas',
|
|
'-Wwrite-strings',
|
|
'-Wno-missing-field-initializers', # SWIG 3.0.2 generates partially-initialized structs
|
|
'-Wno-unused-parameter', # SWIG generates functions with unused parameters
|
|
'-Wno-cast-qual', # libsepol/libselinux uses const-to-nonconst casts
|
|
'-Wno-shadow', # SWIG generates shadow variables
|
|
'-fno-exceptions'],
|
|
extra_objects=[static_sepol],
|
|
extra_link_args=['-Wl,--version-script=libqpol/libqpol.map'],
|
|
swig_opts=['-Ilibqpol/include'])]
|
|
|
|
setup(name='setools',
|
|
version='4.0.0-beta',
|
|
description='SELinux Policy tools.',
|
|
author='Tresys Technology, LLC',
|
|
author_email='setools@tresys.com',
|
|
url='https://github.com/TresysTechnology/setools',
|
|
cmdclass={'build_yacc': YaccCommand,
|
|
'build_lex': LexCommand,
|
|
'build_ext': BuildExtCommand},
|
|
packages=['setools', 'setools.diff', 'setools.policyrep', 'setoolsgui', 'setoolsgui.apol'],
|
|
scripts=['apol', 'sediff', 'seinfo', 'seinfoflow', 'sesearch', 'sedta'],
|
|
data_files=[(join(sys.prefix, 'share/man/man1'), glob.glob("man/*.1") ),
|
|
(join(sys.prefix, 'share/setools'), glob.glob("data/*.ui") + ["data/perm_map"] ),
|
|
(join(sys.prefix, 'share/setools/icons'), glob.glob("data/icons/*.png"))],
|
|
ext_modules=ext_py_mods,
|
|
test_suite='tests',
|
|
license='GPLv2+, LGPLv2.1+',
|
|
classifiers=[
|
|
'Environment :: Console',
|
|
'Environment :: X11 Applications :: Qt',
|
|
'Intended Audience :: Information Technology',
|
|
'Topic :: Security',
|
|
'Topic :: Utilities',
|
|
],
|
|
)
|