[policycoreutils] Only report restorecon warning for missing default label, if not running
Daniel J Walsh
dwalsh at fedoraproject.org
Wed Nov 7 15:50:05 UTC 2012
commit 6dfb3b920c727f7ae162b50f40e89fe405f4d554
Author: Dan Walsh <dwalsh at redhat.com>
Date: Wed Nov 7 10:49:52 2012 -0500
Only report restorecon warning for missing default label, if not running
recusively
- Update translations
policycoreutils-rhat.patch | 967 ++++++++++++++++++++++++--------------------
policycoreutils.spec | 7 +-
2 files changed, 529 insertions(+), 445 deletions(-)
---
diff --git a/policycoreutils-rhat.patch b/policycoreutils-rhat.patch
index 223f9ad..66c6564 100644
--- a/policycoreutils-rhat.patch
+++ b/policycoreutils-rhat.patch
@@ -160366,7 +160366,7 @@ index 9787182..097a210 100644
+"services."
msgstr ""
diff --git a/policycoreutils/po/ja.po b/policycoreutils/po/ja.po
-index ffeaef5..eea0224 100644
+index ffeaef5..c42c348 100644
--- a/policycoreutils/po/ja.po
+++ b/policycoreutils/po/ja.po
@@ -1,38 +1,36 @@
@@ -160391,7 +160391,7 @@ index ffeaef5..eea0224 100644
-"PO-Revision-Date: 2012-04-02 20:30+0000\n"
-"Last-Translator: dwalsh <dwalsh at redhat.com>\n"
+"POT-Creation-Date: 2012-10-08 10:31-0400\n"
-+"PO-Revision-Date: 2012-11-03 00:49+0000\n"
++"PO-Revision-Date: 2012-11-07 11:31+0000\n"
+"Last-Translator: Tomoyuki KATO <tomo at dream.daynight.jp>\n"
"Language-Team: Japanese <trans-ja at lists.fedoraproject.org>\n"
-"Language: ja\n"
@@ -162654,13 +162654,13 @@ index ffeaef5..eea0224 100644
+#, python-format
+msgid "Add %s"
+msgstr "%s の追加"
-
--#: ../gui/selinux.tbl:4
++
+#: ../gui/semanagePage.py:148
+#, python-format
+msgid "Modify %s"
+msgstr "%s の修正"
-+
+
+-#: ../gui/selinux.tbl:4
+#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2819
+msgid "Permissive"
+msgstr "容認"
@@ -163259,9 +163259,10 @@ index ffeaef5..eea0224 100644
-#: ../gui/selinux.tbl:72
-msgid "Disable SELinux protection for games"
+-msgstr ""
+#: ../sepolicy/sepolicy/generate.py:171
+msgid "Valid Types:\n"
- msgstr ""
++msgstr "有効な形式:\n"
-#: ../gui/selinux.tbl:73
-msgid "Disable SELinux protection for the web browsers"
@@ -163270,56 +163271,56 @@ index ffeaef5..eea0224 100644
+#, python-format
+msgid "Ports must be numbers or ranges of numbers from 1 to %d "
+msgstr "ポートは数字、又は 1 から %d までの数字の範囲でなければなりません"
-+
+
+-#: ../gui/selinux.tbl:74
+-msgid "Disable SELinux protection for Thunderbird"
+-msgstr ""
+#: ../sepolicy/sepolicy/generate.py:332
+msgid "You must enter a name for your confined process/user"
+msgstr "制約されたプロセス/ユーザーの名前を記入する必要があります"
-+
+
+-#: ../gui/selinux.tbl:75
+-msgid "Disable SELinux protection for distccd daemon"
+-msgstr ""
+#: ../sepolicy/sepolicy/generate.py:334
+msgid ""
+"Name must be alpha numberic with no spaces. Consider using option \"-n "
+"MODULENAME\""
+msgstr "名前は空白の無い英数字でなければなりません。オプション \"-n モジュール名\" の使用を考慮して下さい"
-+
+
+-#: ../gui/selinux.tbl:76
+-msgid "Disable SELinux protection for dmesg daemon"
+-msgstr ""
+#: ../sepolicy/sepolicy/generate.py:422
+msgid "User Role types can not be assigned executables."
+msgstr "ユーザーロールタイプは割り当て済みの実行ファイルではいけません。"
-+
+
+-#: ../gui/selinux.tbl:77
+-msgid "Disable SELinux protection for dnsmasq daemon"
+-msgstr ""
+#: ../sepolicy/sepolicy/generate.py:428
+msgid "Only Daemon apps can use an init script.."
+msgstr "デーモンアプリケーションのみが init スクリプトを使用できます"
--#: ../gui/selinux.tbl:74
--msgid "Disable SELinux protection for Thunderbird"
+-#: ../gui/selinux.tbl:78
+-msgid "Disable SELinux protection for dovecot daemon"
-msgstr ""
+#: ../sepolicy/sepolicy/generate.py:446
+msgid "use_resolve must be a boolean value "
+msgstr "use_resolve はブーリアン値でなければなりません"
-
--#: ../gui/selinux.tbl:75
--msgid "Disable SELinux protection for distccd daemon"
--msgstr ""
++
+#: ../sepolicy/sepolicy/generate.py:452
+msgid "use_syslog must be a boolean value "
+msgstr "use_syslog はブーリアン値でなければなりません"
-
--#: ../gui/selinux.tbl:76
--msgid "Disable SELinux protection for dmesg daemon"
--msgstr ""
++
+#: ../sepolicy/sepolicy/generate.py:458
+msgid "use_kerberos must be a boolean value "
+msgstr "use_kerberos はブーリアン値でなければなりません"
-
--#: ../gui/selinux.tbl:77
--msgid "Disable SELinux protection for dnsmasq daemon"
--msgstr ""
++
+#: ../sepolicy/sepolicy/generate.py:464
+msgid "manage_krb5_rcache must be a boolean value "
+msgstr "manage_krb5_rcache はブーリアン値でなければなりません"
-
--#: ../gui/selinux.tbl:78
--msgid "Disable SELinux protection for dovecot daemon"
--msgstr ""
++
+#: ../sepolicy/sepolicy/generate.py:494
+msgid "USER Types automatically get a tmp type"
+msgstr "USER タイプは自動的に tmp タイプを取ります"
@@ -163398,78 +163399,79 @@ index ffeaef5..eea0224 100644
msgid ""
-"Do not audit things that we know to be broken but which are not security "
-"risks"
+-msgstr ""
+"Allow cdrecord to read various content. nfs, samba, removable devices, user "
+"temp and untrusted content files"
+msgstr "各種コンテンツ (nfs、samba、脱着可能デバイス、ユーザーの一時ファイル、信頼できないコンテンツファイルなど) の読み込みを cdrecord に許可する"
-+
+
+-#: ../gui/selinux.tbl:88
+-msgid "Disable SELinux protection for hostname daemon"
+#: booleans.py:7
+msgid "Allow clamd to use JIT compiler"
msgstr ""
--#: ../gui/selinux.tbl:88
--msgid "Disable SELinux protection for hostname daemon"
+-#: ../gui/selinux.tbl:89
+-msgid "Disable SELinux protection for hotplug daemon"
+#: booleans.py:8
+msgid "Allow clamscan to non security files on a system"
msgstr ""
--#: ../gui/selinux.tbl:89
--msgid "Disable SELinux protection for hotplug daemon"
+-#: ../gui/selinux.tbl:90
+-msgid "Disable SELinux protection for howl daemon"
+#: booleans.py:9
+msgid "Allow clamscan to read user content"
msgstr ""
--#: ../gui/selinux.tbl:90
--msgid "Disable SELinux protection for howl daemon"
+-#: ../gui/selinux.tbl:91
+-msgid "Disable SELinux protection for cups hplip daemon"
+#: booleans.py:10
+msgid ""
+"Allow Cobbler to modify public files used for public file transfer services."
msgstr ""
--#: ../gui/selinux.tbl:91
--msgid "Disable SELinux protection for cups hplip daemon"
+-#: ../gui/selinux.tbl:92
+-msgid "Disable SELinux protection for httpd rotatelogs"
+#: booleans.py:11
+msgid "Allow Cobbler to connect to the network using TCP."
msgstr ""
--#: ../gui/selinux.tbl:92
--msgid "Disable SELinux protection for httpd rotatelogs"
+-#: ../gui/selinux.tbl:93 ../gui/selinux.tbl:232 ../gui/selinux.tbl:233
+-msgid "HTTPD Service"
+#: booleans.py:12
+msgid "Allow Cobbler to access cifs file systems."
msgstr ""
--#: ../gui/selinux.tbl:93 ../gui/selinux.tbl:232 ../gui/selinux.tbl:233
--msgid "HTTPD Service"
+-#: ../gui/selinux.tbl:93
+-msgid "Disable SELinux protection for http suexec"
+#: booleans.py:13
+msgid "Allow Cobbler to access nfs file systems."
msgstr ""
--#: ../gui/selinux.tbl:93
--msgid "Disable SELinux protection for http suexec"
+-#: ../gui/selinux.tbl:94
+-msgid "Disable SELinux protection for hwclock daemon"
+#: booleans.py:14
+msgid "Allow collectd to connect to the network using TCP."
msgstr ""
--#: ../gui/selinux.tbl:94
--msgid "Disable SELinux protection for hwclock daemon"
+-#: ../gui/selinux.tbl:95
+-msgid "Disable SELinux protection for i18n daemon"
+#: booleans.py:15
+msgid "Allow codnor domain to connect to the network using TCP."
msgstr ""
--#: ../gui/selinux.tbl:95
--msgid "Disable SELinux protection for i18n daemon"
+-#: ../gui/selinux.tbl:96
+-msgid "Disable SELinux protection for imazesrv daemon"
+#: booleans.py:16
+msgid ""
+"Allow system cron jobs to relabel filesystem for restoring file contexts."
msgstr ""
--#: ../gui/selinux.tbl:96
--msgid "Disable SELinux protection for imazesrv daemon"
-+#: booleans.py:17
-+msgid "Allow cvs daemon to read shadow"
- msgstr ""
-
-#: ../gui/selinux.tbl:97
-msgid "Disable SELinux protection for inetd child daemons"
++#: booleans.py:17
++msgid "Allow cvs daemon to read shadow"
++msgstr "cvs デーモンが shadow を読み込むことを許可する"
++
+#: booleans.py:18
+msgid "Allow all daemons to write corefiles to /"
+msgstr "/ へのコアファイルの書き込みを全てのデーモンに許可する"
@@ -164115,182 +164117,179 @@ index ffeaef5..eea0224 100644
msgid ""
-"Allow staff_r users to search the sysadm home dir and read files (such as ~/."
-"bashrc)"
+-msgstr ""
+-
+-#: ../gui/selinux.tbl:190 ../gui/selinux.tbl:191
+-msgid "Universal SSL tunnel"
+"Determine whether Polipo session daemon can bind tcp sockets to all "
+"unreserved ports."
msgstr ""
--#: ../gui/selinux.tbl:190 ../gui/selinux.tbl:191
--msgid "Universal SSL tunnel"
+-#: ../gui/selinux.tbl:190
+-msgid "Disable SELinux protection for stunnel daemon"
+#: booleans.py:120
+msgid ""
+"Determine whether calling user domains can execute Polipo daemon in the "
+"polipo_session_t domain."
msgstr ""
--#: ../gui/selinux.tbl:190
--msgid "Disable SELinux protection for stunnel daemon"
+-#: ../gui/selinux.tbl:191
+-msgid "Allow stunnel daemon to run as standalone, outside of xinetd"
+#: booleans.py:121
+msgid "Determine whether polipo can access cifs file systems."
msgstr ""
--#: ../gui/selinux.tbl:191
--msgid "Allow stunnel daemon to run as standalone, outside of xinetd"
+-#: ../gui/selinux.tbl:192
+-msgid "Disable SELinux protection for swat daemon"
+#: booleans.py:122
+msgid "Determine whether Polipo can access nfs file systems."
msgstr ""
--#: ../gui/selinux.tbl:192
--msgid "Disable SELinux protection for swat daemon"
+-#: ../gui/selinux.tbl:193
+-msgid "Disable SELinux protection for sxid daemon"
+#: booleans.py:123
+msgid "Enable polyinstantiated directory support."
msgstr ""
--#: ../gui/selinux.tbl:193
--msgid "Disable SELinux protection for sxid daemon"
+-#: ../gui/selinux.tbl:194
+-msgid "Disable SELinux protection for syslogd daemon"
+#: booleans.py:124
+msgid "Allow the portage domains to use NFS mounts (regular nfs_t)"
msgstr ""
--#: ../gui/selinux.tbl:194
--msgid "Disable SELinux protection for syslogd daemon"
+-#: ../gui/selinux.tbl:195
+-msgid "Disable SELinux protection for system cron jobs"
+#: booleans.py:125
+msgid "Allow postfix_local domain full write access to mail_spool directories"
msgstr ""
--#: ../gui/selinux.tbl:195
--msgid "Disable SELinux protection for system cron jobs"
+-#: ../gui/selinux.tbl:196
+-msgid "Disable SELinux protection for tcp daemon"
+#: booleans.py:126
+msgid "Allow postgresql to use ssh and rsync for point-in-time recovery"
msgstr ""
--#: ../gui/selinux.tbl:196
--msgid "Disable SELinux protection for tcp daemon"
+-#: ../gui/selinux.tbl:197
+-msgid "Disable SELinux protection for telnet daemon"
+#: booleans.py:127
+msgid "Allow transmit client label to foreign database"
msgstr ""
--#: ../gui/selinux.tbl:197
--msgid "Disable SELinux protection for telnet daemon"
+-#: ../gui/selinux.tbl:198
+-msgid "Disable SELinux protection for tftpd daemon"
+#: booleans.py:128
+msgid "Allow database admins to execute DML statement"
msgstr ""
--#: ../gui/selinux.tbl:198
--msgid "Disable SELinux protection for tftpd daemon"
+-#: ../gui/selinux.tbl:199
+-msgid "Disable SELinux protection for transproxy daemon"
+#: booleans.py:129
+msgid "Allow unprivileged users to execute DDL statement"
msgstr ""
--#: ../gui/selinux.tbl:199
--msgid "Disable SELinux protection for transproxy daemon"
+-#: ../gui/selinux.tbl:200
+-msgid "Disable SELinux protection for udev daemon"
+#: booleans.py:130
+msgid "Allow pppd to load kernel modules for certain modems"
msgstr ""
--#: ../gui/selinux.tbl:200
--msgid "Disable SELinux protection for udev daemon"
+-#: ../gui/selinux.tbl:201
+-msgid "Disable SELinux protection for uml daemon"
-msgstr ""
+#: booleans.py:131
+msgid "Allow pppd to be run for a regular user"
+msgstr "普通のユーザー用に pppd の稼働を許可する"
--#: ../gui/selinux.tbl:201
--msgid "Disable SELinux protection for uml daemon"
-+#: booleans.py:132
-+msgid ""
-+"Allow privoxy to connect to all ports, not just HTTP, FTP, and Gopher ports."
- msgstr ""
-
-#: ../gui/selinux.tbl:202
--msgid ""
++#: booleans.py:132
+ msgid ""
-"Allow xinetd to run unconfined, including any services it starts that do not "
-"have a domain transition explicitly defined"
-+#: booleans.py:133
-+msgid "Allow Puppet client to manage all file types."
++"Allow privoxy to connect to all ports, not just HTTP, FTP, and Gopher ports."
msgstr ""
-#: ../gui/selinux.tbl:203
-msgid ""
-"Allow rc scripts to run unconfined, including any daemon started by an rc "
-"script that does not have a domain transition explicitly defined"
-+#: booleans.py:134
-+msgid "Allow Puppet master to use connect to MySQL and PostgreSQL database"
++#: booleans.py:133
++msgid "Allow Puppet client to manage all file types."
msgstr ""
-#: ../gui/selinux.tbl:204
-msgid "Allow rpm to run unconfined"
-+#: booleans.py:135
-+msgid "Allow qemu to connect fully to the network"
++#: booleans.py:134
++msgid "Allow Puppet master to use connect to MySQL and PostgreSQL database"
msgstr ""
-#: ../gui/selinux.tbl:205
-msgid "Allow privileged utilities like hotplug and insmod to run unconfined"
-+#: booleans.py:136
-+msgid "Allow qemu to use cifs/Samba file systems"
++#: booleans.py:135
++msgid "Allow qemu to connect fully to the network"
msgstr ""
-#: ../gui/selinux.tbl:206
-msgid "Disable SELinux protection for updfstab daemon"
-+#: booleans.py:137
-+msgid "Allow qemu to use serial/parallel communication ports"
++#: booleans.py:136
++msgid "Allow qemu to use cifs/Samba file systems"
msgstr ""
-#: ../gui/selinux.tbl:207
-msgid "Disable SELinux protection for uptimed daemon"
-+#: booleans.py:138
-+msgid "Allow qemu to use nfs file systems"
++#: booleans.py:137
++msgid "Allow qemu to use serial/parallel communication ports"
msgstr ""
-#: ../gui/selinux.tbl:208
-msgid ""
-"Allow user_r to reach sysadm_r via su, sudo, or userhelper. Otherwise, only "
-"staff_r can do so"
-+#: booleans.py:139
-+msgid "Allow qemu to use usb devices"
++#: booleans.py:138
++msgid "Allow qemu to use nfs file systems"
msgstr ""
-#: ../gui/selinux.tbl:209
-msgid "Allow users to execute the mount command"
-+#: booleans.py:140
-+msgid "Allow racoon to read shadow"
++#: booleans.py:139
++msgid "Allow qemu to use usb devices"
msgstr ""
-#: ../gui/selinux.tbl:210
-msgid "Allow regular users direct mouse access (only allow the X server)"
-+#: booleans.py:141
-+msgid "Allow rgmanager domain to connect to the network using TCP."
++#: booleans.py:140
++msgid "Allow racoon to read shadow"
msgstr ""
-#: ../gui/selinux.tbl:211
-msgid "Allow users to run the dmesg command"
-+#: booleans.py:142
-+msgid ""
-+"Allow rsync to modify public files used for public file transfer services. "
-+"Files/Directories must be labeled public_content_rw_t."
++#: booleans.py:141
++msgid "Allow rgmanager domain to connect to the network using TCP."
msgstr ""
-#: ../gui/selinux.tbl:212
-msgid "Allow users to control network interfaces (also needs USERCTL=true)"
-+#: booleans.py:143
-+msgid "Allow rsync to run as a client"
++#: booleans.py:142
++msgid ""
++"Allow rsync to modify public files used for public file transfer services. "
++"Files/Directories must be labeled public_content_rw_t."
msgstr ""
-#: ../gui/selinux.tbl:213
-msgid "Allow normal user to execute ping"
-+#: booleans.py:144
-+msgid "Allow rsync to export any files/directories read only."
++#: booleans.py:143
++msgid "Allow rsync to run as a client"
msgstr ""
-#: ../gui/selinux.tbl:214
-msgid "Allow user to r/w noextattrfile (FAT, CDROM, FLOPPY)"
-+#: booleans.py:145
-+msgid "Allow rsync servers to share cifs files systems"
++#: booleans.py:144
++msgid "Allow rsync to export any files/directories read only."
msgstr ""
-#: ../gui/selinux.tbl:215
-msgid "Allow users to rw usb devices"
-+#: booleans.py:146
-+msgid "Allow rsync servers to share nfs files systems"
++#: booleans.py:145
++msgid "Allow rsync servers to share cifs files systems"
msgstr ""
-#: ../gui/selinux.tbl:216
@@ -164298,100 +164297,107 @@ index ffeaef5..eea0224 100644
-"Allow users to run TCP servers (bind to ports and accept connection from the "
-"same domain and outside users) disabling this forces FTP passive mode and "
-"may change other protocols"
-+#: booleans.py:147
-+msgid "Allow samba to create new home directories (e.g. via PAM)"
++#: booleans.py:146
++msgid "Allow rsync servers to share nfs files systems"
msgstr ""
-#: ../gui/selinux.tbl:217
-msgid "Allow user to stat ttyfiles"
++#: booleans.py:147
++msgid "Allow samba to create new home directories (e.g. via PAM)"
+ msgstr ""
+
+-#: ../gui/selinux.tbl:218
+-msgid "Disable SELinux protection for uucpd daemon"
+#: booleans.py:148
+msgid ""
+"Allow samba to act as the domain controller, add users, groups and change "
+"passwords."
msgstr ""
--#: ../gui/selinux.tbl:218
--msgid "Disable SELinux protection for uucpd daemon"
+-#: ../gui/selinux.tbl:219
+-msgid "Disable SELinux protection for vmware daemon"
+#: booleans.py:149
+msgid "Allow samba to share users home directories."
msgstr ""
--#: ../gui/selinux.tbl:219
--msgid "Disable SELinux protection for vmware daemon"
+-#: ../gui/selinux.tbl:220
+-msgid "Disable SELinux protection for watchdog daemon"
+#: booleans.py:150
+msgid "Allow samba to share any file/directory read only."
msgstr ""
--#: ../gui/selinux.tbl:220
--msgid "Disable SELinux protection for watchdog daemon"
+-#: ../gui/selinux.tbl:221
+-msgid "Disable SELinux protection for winbind daemon"
+#: booleans.py:151
+msgid "Allow samba to share any file/directory read/write."
msgstr ""
--#: ../gui/selinux.tbl:221
--msgid "Disable SELinux protection for winbind daemon"
+-#: ../gui/selinux.tbl:222
+-msgid "Disable SELinux protection for xdm daemon"
+#: booleans.py:152
+msgid "Allow samba to act as a portmapper"
msgstr ""
--#: ../gui/selinux.tbl:222
--msgid "Disable SELinux protection for xdm daemon"
+-#: ../gui/selinux.tbl:223
+-msgid "Allow xdm logins as sysadm_r:sysadm_t"
+#: booleans.py:153
+msgid "Allow samba to run unconfined scripts"
msgstr ""
--#: ../gui/selinux.tbl:223
--msgid "Allow xdm logins as sysadm_r:sysadm_t"
+-#: ../gui/selinux.tbl:224
+-msgid "Disable SELinux protection for xen daemon"
+#: booleans.py:154
+msgid "Allow samba to export ntfs/fusefs volumes."
msgstr ""
--#: ../gui/selinux.tbl:224
--msgid "Disable SELinux protection for xen daemon"
+-#: ../gui/selinux.tbl:225
+-msgid "XEN"
+#: booleans.py:155
+msgid "Allow samba to export NFS volumes."
msgstr ""
-#: ../gui/selinux.tbl:225
--msgid "XEN"
+-msgid "Allow xen to read/write physical disk devices"
+#: booleans.py:156
+msgid "Allow sanlock to read/write fuse files"
msgstr ""
--#: ../gui/selinux.tbl:225
--msgid "Allow xen to read/write physical disk devices"
+-#: ../gui/selinux.tbl:226
+-msgid "Disable SELinux protection for xfs daemon"
+#: booleans.py:157
+msgid "Allow sanlock to manage nfs files"
msgstr ""
--#: ../gui/selinux.tbl:226
--msgid "Disable SELinux protection for xfs daemon"
+-#: ../gui/selinux.tbl:227
+-msgid "Disable SELinux protection for xen control"
+#: booleans.py:158
+msgid "Allow sanlock to manage cifs files"
msgstr ""
--#: ../gui/selinux.tbl:227
--msgid "Disable SELinux protection for xen control"
+-#: ../gui/selinux.tbl:228
+-msgid "Disable SELinux protection for ypbind daemon"
+#: booleans.py:159
+msgid "Allow sasl to read shadow"
msgstr ""
--#: ../gui/selinux.tbl:228
--msgid "Disable SELinux protection for ypbind daemon"
+-#: ../gui/selinux.tbl:229
+-msgid "Disable SELinux protection for NIS Password Daemon"
+#: booleans.py:160
+msgid ""
+"disallow programs, such as newrole, from transitioning to administrative "
+"user domains."
msgstr ""
--#: ../gui/selinux.tbl:229
--msgid "Disable SELinux protection for NIS Password Daemon"
+-#: ../gui/selinux.tbl:230
+-msgid "Disable SELinux protection for ypserv daemon"
+-msgstr ""
+#: booleans.py:161
+msgid "Disable kernel module loading."
- msgstr ""
++msgstr "カーネルモジュールの読み込みを無効化する。"
--#: ../gui/selinux.tbl:230
--msgid "Disable SELinux protection for ypserv daemon"
+-#: ../gui/selinux.tbl:231
+-msgid "Disable SELinux protection for NIS Transfer Daemon"
+#: booleans.py:162
+msgid ""
+"Boolean to determine whether the system permits loading policy, setting "
@@ -164399,14 +164405,14 @@ index ffeaef5..eea0224 100644
+"to reboot to set it back."
msgstr ""
--#: ../gui/selinux.tbl:231
--msgid "Disable SELinux protection for NIS Transfer Daemon"
+-#: ../gui/selinux.tbl:232
+-msgid "Allow SELinux webadm user to manage unprivileged users home directories"
+#: booleans.py:163
+msgid "Allow regular users direct dri device access"
msgstr ""
--#: ../gui/selinux.tbl:232
--msgid "Allow SELinux webadm user to manage unprivileged users home directories"
+-#: ../gui/selinux.tbl:233
+-msgid "Allow SELinux webadm user to read unprivileged users home directories"
+#: booleans.py:164
+msgid ""
+"Allow unconfined executables to make their heap memory executable. Doing "
@@ -164414,8 +164420,9 @@ index ffeaef5..eea0224 100644
+"could indicate an attack. This executable should be reported in bugzilla"
msgstr ""
--#: ../gui/selinux.tbl:233
--msgid "Allow SELinux webadm user to read unprivileged users home directories"
+-#: ../gui/semanagePage.py:126
+-#, python-format
+-msgid "Are you sure you want to delete %s '%s'?"
+#: booleans.py:165
+msgid ""
+"Allow all unconfined executables to use libraries requiring text relocation "
@@ -164424,7 +164431,7 @@ index ffeaef5..eea0224 100644
-#: ../gui/semanagePage.py:126
-#, python-format
--msgid "Are you sure you want to delete %s '%s'?"
+-msgid "Delete %s"
+#: booleans.py:166
+msgid ""
+"Allow unconfined executables to make their stack executable. This should "
@@ -164432,31 +164439,28 @@ index ffeaef5..eea0224 100644
+"could indicate an attack. This executable should be reported in bugzilla"
msgstr ""
--#: ../gui/semanagePage.py:126
+-#: ../gui/semanagePage.py:134
-#, python-format
--msgid "Delete %s"
+-msgid "Add %s"
+#: booleans.py:167
+msgid "Allow users to connect to the local mysql server"
msgstr ""
--#: ../gui/semanagePage.py:134
+-#: ../gui/semanagePage.py:148
-#, python-format
--msgid "Add %s"
+-msgid "Modify %s"
+#: booleans.py:168
+msgid ""
+"Allow confined users the ability to execute the ping and traceroute "
+"commands."
msgstr ""
--#: ../gui/semanagePage.py:148
--#, python-format
--msgid "Modify %s"
-+#: booleans.py:169
-+msgid "Allow users to connect to PostgreSQL"
- msgstr ""
-
-#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2819
-msgid "Permissive"
++#: booleans.py:169
++msgid "Allow users to connect to PostgreSQL"
++msgstr "ユーザーが PostgreSQL に接続することを許可する"
++
+#: booleans.py:170
+msgid ""
+"Allow user to r/w files on filesystems that do not have extended attributes "
@@ -164642,56 +164646,53 @@ index ffeaef5..eea0224 100644
-"Disabled\n"
-"Permissive\n"
-"Enforcing\n"
-+"allow unconfined users to transition to the chrome sandbox domains when "
-+"running chrome-sandbox"
- msgstr ""
-
+-msgstr ""
+-
-#: ../gui/system-config-selinux.glade:1373
-msgid "Current Enforcing Mode"
-+#: booleans.py:194
-+msgid "Allow a user to login as an unconfined domain"
++"allow unconfined users to transition to the chrome sandbox domains when "
++"running chrome-sandbox"
msgstr ""
-#: ../gui/system-config-selinux.glade:1418
-msgid "System Default Policy Type: "
-+#: booleans.py:195
-+msgid ""
-+"Allow unconfined users to transition to the Mozilla plugin domain when "
-+"running xulrunner plugin-container."
++#: booleans.py:194
++msgid "Allow a user to login as an unconfined domain"
msgstr ""
-#: ../gui/system-config-selinux.glade:1463
--msgid ""
++#: booleans.py:195
+ msgid ""
-"Select if you wish to relabel then entire file system on next reboot. "
-"Relabeling can take a very long time, depending on the size of the system. "
-"If you are changing policy types or going from disabled to enforcing, a "
-"relabel is required."
-+#: booleans.py:196
-+msgid "Allow video playing tools to run unconfined"
++"Allow unconfined users to transition to the Mozilla plugin domain when "
++"running xulrunner plugin-container."
msgstr ""
-#: ../gui/system-config-selinux.glade:1509
-msgid "Relabel on next reboot."
-+#: booleans.py:197
-+msgid "Allow unprivledged user to create and transition to svirt domains."
++#: booleans.py:196
++msgid "Allow video playing tools to run unconfined"
msgstr ""
-#: ../gui/system-config-selinux.glade:1561
-msgid "label37"
-+#: booleans.py:198
-+msgid "Support ecryptfs home directories"
++#: booleans.py:197
++msgid "Allow unprivledged user to create and transition to svirt domains."
msgstr ""
-#: ../gui/system-config-selinux.glade:1598
-msgid "Revert boolean setting to system default"
-+#: booleans.py:199
-+msgid "Support fusefs home directories"
++#: booleans.py:198
++msgid "Support ecryptfs home directories"
msgstr ""
-#: ../gui/system-config-selinux.glade:1614
-msgid "Toggle between Customized and All Booleans"
-+#: booleans.py:200
-+msgid "Use lpd server instead of cups"
++#: booleans.py:199
++msgid "Support fusefs home directories"
msgstr ""
-#: ../gui/system-config-selinux.glade:1645
@@ -164702,124 +164703,135 @@ index ffeaef5..eea0224 100644
-#: ../gui/system-config-selinux.glade:2692
-#: ../gui/system-config-selinux.glade:2867
-msgid "Filter"
-+#: booleans.py:201
-+msgid "Support NFS home directories"
++#: booleans.py:200
++msgid "Use lpd server instead of cups"
msgstr ""
-#: ../gui/system-config-selinux.glade:1734
-msgid "label50"
-+#: booleans.py:202
-+msgid "Support SAMBA home directories"
++#: booleans.py:201
++msgid "Support NFS home directories"
msgstr ""
-#: ../gui/system-config-selinux.glade:1771
-msgid "Add File Context"
-+#: booleans.py:203
-+msgid "Allow varnishd to connect to all ports, not just HTTP."
++#: booleans.py:202
++msgid "Support SAMBA home directories"
msgstr ""
-#: ../gui/system-config-selinux.glade:1787
-msgid "Modify File Context"
-+#: booleans.py:204
-+msgid "Ignore vbetool mmap_zero errors."
++#: booleans.py:203
++msgid "Allow varnishd to connect to all ports, not just HTTP."
msgstr ""
-#: ../gui/system-config-selinux.glade:1803
-msgid "Delete File Context"
-+#: booleans.py:205
-+msgid ""
-+"Allow confined virtual guests to use serial/parallel communication ports"
++#: booleans.py:204
++msgid "Ignore vbetool mmap_zero errors."
msgstr ""
-#: ../gui/system-config-selinux.glade:1819
-msgid "Toggle between all and customized file context"
-+#: booleans.py:206
++#: booleans.py:205
+msgid ""
-+"Allow confined virtual guests to use executable memory and executable stack"
++"Allow confined virtual guests to use serial/parallel communication ports"
msgstr ""
-#: ../gui/system-config-selinux.glade:1939
-msgid "label38"
-+#: booleans.py:207
-+msgid "Allow confined virtual guests to read fuse files"
++#: booleans.py:206
++msgid ""
++"Allow confined virtual guests to use executable memory and executable stack"
msgstr ""
-#: ../gui/system-config-selinux.glade:1976
-msgid "Add SELinux User Mapping"
-+#: booleans.py:208
-+msgid "Allow confined virtual guests to manage nfs files"
++#: booleans.py:207
++msgid "Allow confined virtual guests to read fuse files"
msgstr ""
-#: ../gui/system-config-selinux.glade:1992
-msgid "Modify SELinux User Mapping"
-+#: booleans.py:209
-+msgid "Allow confined virtual guests to manage cifs files"
++#: booleans.py:208
++msgid "Allow confined virtual guests to manage nfs files"
msgstr ""
-#: ../gui/system-config-selinux.glade:2008
-msgid "Delete SELinux User Mapping"
-+#: booleans.py:210
-+msgid "Allow confined virtual guests to interact with the sanlock"
++#: booleans.py:209
++msgid "Allow confined virtual guests to manage cifs files"
msgstr ""
-#: ../gui/system-config-selinux.glade:2126
-msgid "label39"
-+#: booleans.py:211
-+msgid "Allow confined virtual guests to manage device configuration, (pci)"
++#: booleans.py:210
++msgid "Allow confined virtual guests to interact with the sanlock"
msgstr ""
-#: ../gui/system-config-selinux.glade:2163
-msgid "Add User"
-+#: booleans.py:212
-+msgid "Allow confined virtual guests to use usb devices"
++#: booleans.py:211
++msgid "Allow confined virtual guests to manage device configuration, (pci)"
msgstr ""
-#: ../gui/system-config-selinux.glade:2179
-msgid "Modify User"
-+#: booleans.py:213
-+msgid "Allow confined virtual guests to interact with the xserver"
- msgstr ""
+-msgstr ""
++#: booleans.py:212
++msgid "Allow confined virtual guests to use usb devices"
++msgstr "仮想マシンが USB デバイスを使用することを許可する"
-#: ../gui/system-config-selinux.glade:2195
-msgid "Delete User"
-+#: booleans.py:214
-+msgid "Allow webadm to manage files in users home directories"
- msgstr ""
+-msgstr ""
++#: booleans.py:213
++msgid "Allow confined virtual guests to interact with the xserver"
++msgstr "仮想マシンが X サーバーと通信することを許可する"
-#: ../gui/system-config-selinux.glade:2313
-msgid "label41"
-+#: booleans.py:215
-+msgid "Allow webadm to read files in users home directories"
- msgstr ""
+-msgstr ""
++#: booleans.py:214
++msgid "Allow webadm to manage files in users home directories"
++msgstr "Web 管理者がユーザーのホームディレクトリーにあるファイルを管理することを許可する"
-#: ../gui/system-config-selinux.glade:2350
-msgid "Add Network Port"
-+#: booleans.py:216
-+msgid "Ignore wine mmap_zero errors."
- msgstr ""
+-msgstr ""
++#: booleans.py:215
++msgid "Allow webadm to read files in users home directories"
++msgstr "Web 管理者がユーザーのホームディレクトリーにあるファイルを読み取るすることを許可する"
-#: ../gui/system-config-selinux.glade:2366
-msgid "Edit Network Port"
-+#: booleans.py:217
-+msgid "Allow the graphical login program to execute bootloader"
- msgstr ""
+-msgstr ""
++#: booleans.py:216
++msgid "Ignore wine mmap_zero errors."
++msgstr "Wine の mmap_zero エラーを無視する。"
-#: ../gui/system-config-selinux.glade:2382
-msgid "Delete Network Port"
-+#: booleans.py:218
-+msgid ""
-+"Allow the graphical login program to login directly as sysadm_r:sysadm_t"
- msgstr ""
+-msgstr ""
++#: booleans.py:217
++msgid "Allow the graphical login program to execute bootloader"
++msgstr "グラフィカルログインプログラムがブートローダーを実行することを許可する"
-#: ../gui/system-config-selinux.glade:2418
-#: ../gui/system-config-selinux.glade:2436
-msgid "Toggle between Customized and All Ports"
-+#: booleans.py:219
-+msgid "Allow xen to manage nfs files"
- msgstr ""
+-msgstr ""
++#: booleans.py:218
++msgid ""
++"Allow the graphical login program to login directly as sysadm_r:sysadm_t"
++msgstr "グラフィカルログインプログラムが sysadm_r:sysadm_t として直接ログインすることを許可する"
-#: ../gui/system-config-selinux.glade:2556
-msgid "label42"
++#: booleans.py:219
++msgid "Allow xen to manage nfs files"
++msgstr "Xen が NFS ファイルを管理することを許可する"
++
+#: booleans.py:220
+msgid ""
+"Allow xend to run blktapctrl/tapdisk. Not required if using dedicated "
@@ -289476,7 +289488,7 @@ index d56fc4e..21ab657 100644
+"services."
msgstr ""
diff --git a/policycoreutils/po/sv.po b/policycoreutils/po/sv.po
-index dd71256..4c8d43e 100644
+index dd71256..0f873cb 100644
--- a/policycoreutils/po/sv.po
+++ b/policycoreutils/po/sv.po
@@ -1,23 +1,23 @@
@@ -289496,7 +289508,7 @@ index dd71256..4c8d43e 100644
-"POT-Creation-Date: 2012-04-02 16:29-0400\n"
-"PO-Revision-Date: 2012-06-14 21:00+0000\n"
+"POT-Creation-Date: 2012-10-08 10:31-0400\n"
-+"PO-Revision-Date: 2012-11-04 21:04+0000\n"
++"PO-Revision-Date: 2012-11-06 19:16+0000\n"
"Last-Translator: Göran Uddeborg <goeran at uddeborg.se>\n"
-"Language-Team: Swedish (http://www.transifex.net/projects/p/fedora/language/sv/)\n"
+"Language-Team: Swedish (http://www.transifex.com/projects/p/fedora/language/sv/)\n"
@@ -290587,7 +290599,7 @@ index dd71256..4c8d43e 100644
msgid "Description"
msgstr "Beskrivning"
-@@ -1001,7 +997,7 @@ msgstr "Fel vid minnesallokering.\n"
+@@ -1001,10 +997,10 @@ msgstr "Fel vid minnesallokering.\n"
msgid "Error sending audit message.\n"
msgstr "Fel vid skickande av granskningsmeddelande.\n"
@@ -290595,7 +290607,11 @@ index dd71256..4c8d43e 100644
+#: ../newrole/newrole.c:692 ../newrole/newrole.c:1058
#, c-format
msgid "Could not determine enforcing mode.\n"
- msgstr "Kunde inte bestämma upprätthållande-läge.\n"
+-msgstr "Kunde inte bestämma upprätthållande-läge.\n"
++msgstr "Kunde inte bestämma tvingande läge.\n"
+
+ #: ../newrole/newrole.c:699
+ #, c-format
@@ -1116,62 +1112,66 @@ msgstr "Kunde inte få tag i tomt signal-set\n"
msgid "Unable to set SIGHUP handler\n"
msgstr "Kan inte sätta SIGHUP-hanterare\n"
@@ -291593,7 +291609,7 @@ index dd71256..4c8d43e 100644
-msgstr "SSH"
+#: ../gui/statusPage.py:70 ../gui/system-config-selinux.glade:2837
+msgid "Enforcing"
-+msgstr "Upprätthållande"
++msgstr "Tvingande"
-#: ../gui/selinux.tbl:10
-msgid "Allow ssh to run ssh-keysign"
@@ -291652,45 +291668,45 @@ index dd71256..4c8d43e 100644
msgid ""
-"Allow user SELinux user account to execute files in home directory or /tmp"
-msgstr "Tillåt SELinuxanvändarkontot user att köra filer i hemkatalogen eller /tmp"
+-
+-#: ../gui/selinux.tbl:16
+-msgid "Allow unconfined to dyntrans to unconfined_execmem"
+-msgstr "Tillåt unconfied att dyntrans till unconfined_execmem"
+"Copyright (c)2006 Red Hat, Inc.\n"
+"Copyright (c) 2006 Dan Walsh <dwalsh at redhat.com>"
+msgstr "Copyright © 2006 Red Hat, Inc.\nCopyright © 2006 Dan Walsh <dwalsh at redhat.com>"
--#: ../gui/selinux.tbl:16
--msgid "Allow unconfined to dyntrans to unconfined_execmem"
--msgstr "Tillåt unconfied att dyntrans till unconfined_execmem"
+-#: ../gui/selinux.tbl:17 ../gui/selinux.tbl:18 ../gui/selinux.tbl:120
+-#: ../gui/selinux.tbl:140
+-msgid "Databases"
+-msgstr "Databaser"
+#: ../gui/system-config-selinux.glade:22
+#: ../gui/system-config-selinux.glade:544
+msgid "Add SELinux Login Mapping"
+msgstr "Lägg till SELinux-inloggningsmappning"
--#: ../gui/selinux.tbl:17 ../gui/selinux.tbl:18 ../gui/selinux.tbl:120
--#: ../gui/selinux.tbl:140
--msgid "Databases"
--msgstr "Databaser"
+-#: ../gui/selinux.tbl:17
+-msgid "Allow user to connect to mysql socket"
+-msgstr "Tillåt user att ansluta till mysql-uttag"
+#: ../gui/system-config-selinux.glade:257
+msgid "Add SELinux Network Ports"
+msgstr "Lägg till SELinux-nätverksportar"
--#: ../gui/selinux.tbl:17
--msgid "Allow user to connect to mysql socket"
--msgstr "Tillåt user att ansluta till mysql-uttag"
+-#: ../gui/selinux.tbl:18
+-msgid "Allow user to connect to postgres socket"
+-msgstr "Tillåt user att ansluta till postgres-uttag"
+#: ../gui/system-config-selinux.glade:391
+#: ../gui/system-config-selinux.glade:678
+msgid "SELinux Type"
+msgstr "SELinux-typ"
--#: ../gui/selinux.tbl:18
--msgid "Allow user to connect to postgres socket"
--msgstr "Tillåt user att ansluta till postgres-uttag"
+-#: ../gui/selinux.tbl:19 ../gui/selinux.tbl:165 ../gui/selinux.tbl:223
+-msgid "XServer"
+-msgstr "XServer"
+#: ../gui/system-config-selinux.glade:622
+msgid "File Specification"
+msgstr "Filspecifikation"
--#: ../gui/selinux.tbl:19 ../gui/selinux.tbl:165 ../gui/selinux.tbl:223
--msgid "XServer"
--msgstr "XServer"
--
-#: ../gui/selinux.tbl:19
-msgid "Allow clients to write to X shared memory"
-msgstr "Tillåt klienter att skriva till X:s delade minne"
@@ -291835,7 +291851,7 @@ index dd71256..4c8d43e 100644
+"Relabeling can take a very long time, depending on the size of the system. "
+"If you are changing policy types or going from disabled to enforcing, a "
+"relabel is required."
-+msgstr "Väl om du vill etikettera om hela filsystemet vid nästa omstart. Ometikettering kan ta väldigt lång tid, beroende på sotrleken av filsystemet. Om du ändrar policytyper eller går från avslaget till tvingande behövs en ometikettering."
++msgstr "Välj om du vill etikettera om hela filsystemet vid nästa omstart. Ometikettering kan ta väldigt lång tid, beroende på sotrleken av filsystemet. Om du ändrar policytyper eller går från avslaget till tvingande behövs en ometikettering."
-#: ../gui/selinux.tbl:40
-msgid "Disable SELinux protection for Cluster Server"
@@ -292824,10 +292840,7 @@ index dd71256..4c8d43e 100644
-"Allow X-Windows server to map a memory region as both executable and "
-"writable"
-msgstr "Tillåt X-Windowsservern att mappa en minnesregion både som körbar och skrivbar"
-+"Allow httpd to act as a FTP client connecting to the ftp port and ephemeral "
-+"ports"
-+msgstr "Tillåt httpd att agera som FTP-klient som ansluter till ftp-porten och efemära portar"
-
+-
-#: ../gui/selinux.tbl:166
-msgid "Disable SELinux protection for saslauthd daemon"
-msgstr "Avaktivera SELinux-skydd för saslauthd-demonen"
@@ -292835,7 +292848,10 @@ index dd71256..4c8d43e 100644
-#: ../gui/selinux.tbl:167
-msgid "Disable SELinux protection for scannerdaemon daemon"
-msgstr "Avaktivera SELinux-skydd för scannerdaemon-demonen"
--
++"Allow httpd to act as a FTP client connecting to the ftp port and ephemeral "
++"ports"
++msgstr "Tillåt httpd att agera som FTP-klient som ansluter till ftp-porten och efemära portar"
+
-#: ../gui/selinux.tbl:168
-msgid "Do not allow transition to sysadm_t, sudo and su effected"
-msgstr "Tillåt inte övergångar till sysadm_t, sudo och su påverkas"
@@ -293130,11 +293146,17 @@ index dd71256..4c8d43e 100644
+#: booleans.py:100
+msgid "Allow mock to read files in home directories."
+msgstr ""
-+
+
+-#: ../gui/selinux.tbl:205
+-msgid "Allow privileged utilities like hotplug and insmod to run unconfined"
+-msgstr "Tillåt priviligerade verktyg som hotplug och insmod att köra obegränsade"
+#: booleans.py:101
+msgid "Allow the mount command to mount any directory or file."
+msgstr ""
-+
+
+-#: ../gui/selinux.tbl:206
+-msgid "Disable SELinux protection for updfstab daemon"
+-msgstr "Avaktivera SELinux-skydd för updfstab-demonen"
+#: booleans.py:102
+msgid "Allow mozilla plugin domain to connect to the network using TCP."
+msgstr ""
@@ -293143,351 +293165,345 @@ index dd71256..4c8d43e 100644
+msgid ""
+"Allow mozilla_plugins to create random content in the users home directory"
+msgstr "Tillåt mozilla_plugins att skapa godtyckligt innehåll i användarens hemkatalog"
-
--#: ../gui/selinux.tbl:205
--msgid "Allow privileged utilities like hotplug and insmod to run unconfined"
--msgstr "Tillåt priviligerade verktyg som hotplug och insmod att köra obegränsade"
++
+#: booleans.py:104
+msgid "Allow confined web browsers to read home directory content"
+msgstr ""
-
--#: ../gui/selinux.tbl:206
--msgid "Disable SELinux protection for updfstab daemon"
--msgstr "Avaktivera SELinux-skydd för updfstab-demonen"
++
+#: booleans.py:105
+msgid "Allow mplayer executable stack"
+msgstr "Tillåt mplayers exekverbara stack"
-
--#: ../gui/selinux.tbl:207
--msgid "Disable SELinux protection for uptimed daemon"
--msgstr "Avaktivera SELinux-skydd för uptimed-demonen"
++
+#: booleans.py:106
+msgid "Allow mysqld to connect to all ports"
+msgstr ""
-
--#: ../gui/selinux.tbl:208
++
+#: booleans.py:107
+msgid "Allow BIND to bind apache port."
+msgstr ""
+
+#: booleans.py:108
- msgid ""
--"Allow user_r to reach sysadm_r via su, sudo, or userhelper. Otherwise, only "
--"staff_r can do so"
--msgstr "Tillåt user_r att nå sysadm_r via su, sudo eller userhelper. Annars kan endast staff_r göra det"
++msgid ""
+"Allow BIND to write the master zone files. Generally this is used for "
+"dynamic DNS or zone transfers."
+msgstr "Tillåt BIND att skriva primärzonfiler. I allmänhet används detta för dynamisk DNS eller zonöverföringar."
-+
+
+-#: ../gui/selinux.tbl:207
+-msgid "Disable SELinux protection for uptimed daemon"
+-msgstr "Avaktivera SELinux-skydd för uptimed-demonen"
+#: booleans.py:109
+msgid "Allow any files/directories to be exported read/only via NFS."
+msgstr "Tillåt godtyckliga filer/kataloger att exporteras endast läsbara via NFS."
--#: ../gui/selinux.tbl:209
--msgid "Allow users to execute the mount command"
--msgstr "Tillåt användare att köra kommandot mount"
+-#: ../gui/selinux.tbl:208
+#: booleans.py:110
+msgid "Allow any files/directories to be exported read/write via NFS."
+msgstr "Tillåt godtyckliga filer/kataloger att exporteras läs- och skrivbara via NFS."
-
--#: ../gui/selinux.tbl:210
--msgid "Allow regular users direct mouse access (only allow the X server)"
--msgstr "Tillåt vanliga användare direkt musåtkomst (tillåt endast X-servern)"
++
+#: booleans.py:111
-+msgid ""
+ msgid ""
+-"Allow user_r to reach sysadm_r via su, sudo, or userhelper. Otherwise, only "
+-"staff_r can do so"
+-msgstr "Tillåt user_r att nå sysadm_r via su, sudo eller userhelper. Annars kan endast staff_r göra det"
+"Allow nfs servers to modify public files used for public file transfer "
+"services. Files/Directories must be labeled public_content_rw_t."
+msgstr "Tillåt nfs-servrar att ändra publika filer använda för publika filöverföringstjänster. Filer/kataloger måste ha etiketten public_content_rw_t."
--#: ../gui/selinux.tbl:211
--msgid "Allow users to run the dmesg command"
--msgstr "Tillåt användare att köra kommandot dmesg"
+-#: ../gui/selinux.tbl:209
+-msgid "Allow users to execute the mount command"
+-msgstr "Tillåt användare att köra kommandot mount"
+#: booleans.py:112
+msgid "Allow system to run with NIS"
+msgstr ""
--#: ../gui/selinux.tbl:212
--msgid "Allow users to control network interfaces (also needs USERCTL=true)"
--msgstr "Tillåt användare att styra nätverksgränssnitt (kräver också USERCTL=true)"
+-#: ../gui/selinux.tbl:210
+-msgid "Allow regular users direct mouse access (only allow the X server)"
+-msgstr "Tillåt vanliga användare direkt musåtkomst (tillåt endast X-servern)"
+#: booleans.py:113
+msgid "Allow confined applications to use nscd shared memory."
+msgstr ""
--#: ../gui/selinux.tbl:213
--msgid "Allow normal user to execute ping"
--msgstr "Tillåt vanliga användare att köra ping"
+-#: ../gui/selinux.tbl:211
+-msgid "Allow users to run the dmesg command"
+-msgstr "Tillåt användare att köra kommandot dmesg"
+#: booleans.py:114
+msgid "Allow nsplugin code to connect to unreserved ports"
+msgstr ""
-+
+
+-#: ../gui/selinux.tbl:212
+-msgid "Allow users to control network interfaces (also needs USERCTL=true)"
+-msgstr "Tillåt användare att styra nätverksgränssnitt (kräver också USERCTL=true)"
+#: booleans.py:115
+msgid "Allow nsplugin code to execmem/execstack"
+msgstr "Tillåt nsplugin-kod att göra execmem/execstack"
-+
+
+-#: ../gui/selinux.tbl:213
+-msgid "Allow normal user to execute ping"
+-msgstr "Tillåt vanliga användare att köra ping"
+#: booleans.py:116
+msgid "Allow openvpn to read home directories"
+msgstr ""
-+
-+#: booleans.py:117
-+msgid "Allow piranha-lvs domain to connect to the network using TCP."
-+msgstr ""
-#: ../gui/selinux.tbl:214
-msgid "Allow user to r/w noextattrfile (FAT, CDROM, FLOPPY)"
-msgstr "Tillåt användare skriva/läsa noextattrfile (FAT, CDROM, FLOPPY)"
-+#: booleans.py:118
-+msgid "Allow polipo to connect to all ports > 1023"
++#: booleans.py:117
++msgid "Allow piranha-lvs domain to connect to the network using TCP."
+msgstr ""
-#: ../gui/selinux.tbl:215
-msgid "Allow users to rw usb devices"
-msgstr "Tillåt användare skriva/läsa usb-enheter"
-+#: booleans.py:119
-+msgid ""
-+"Determine whether Polipo session daemon can bind tcp sockets to all "
-+"unreserved ports."
-+msgstr "Bestäm huruvida Polipo-sessionsdemonen kan binda tcp-uttag till alla oreserverade portar."
++#: booleans.py:118
++msgid "Allow polipo to connect to all ports > 1023"
++msgstr ""
-#: ../gui/selinux.tbl:216
-+#: booleans.py:120
++#: booleans.py:119
msgid ""
-"Allow users to run TCP servers (bind to ports and accept connection from the"
-" same domain and outside users) disabling this forces FTP passive mode and "
-"may change other protocols"
-msgstr "Tillåt användare att köra TCP-servrar (binda till portar och acceptera anslutningar från samma domän och användare utanför). Avaktivering av detta framtvingar passivt läge i FTP och kan ändra andra protokoll"
++"Determine whether Polipo session daemon can bind tcp sockets to all "
++"unreserved ports."
++msgstr "Bestäm huruvida Polipo-sessionsdemonen kan binda tcp-uttag till alla oreserverade portar."
++
++#: booleans.py:120
++msgid ""
+"Determine whether calling user domains can execute Polipo daemon in the "
+"polipo_session_t domain."
+msgstr "Bestäm huruvida anropande användardomäner kan köra Polipo-demonen i domänen polipo_session_t."
++
++#: booleans.py:121
++msgid "Determine whether polipo can access cifs file systems."
++msgstr "Bestäm huruvida polipa kan komma åt cifs-filsystem."
++
++#: booleans.py:122
++msgid "Determine whether Polipo can access nfs file systems."
++msgstr "Bestäm huruvida Polipa kan komma åt nfs-filsystem."
++
++#: booleans.py:123
++msgid "Enable polyinstantiated directory support."
++msgstr "Aktivera stöd för polyinstantierade kataloger."
-#: ../gui/selinux.tbl:217
-msgid "Allow user to stat ttyfiles"
-msgstr "Tillåt användare att ta status på ttyfiler"
-+#: booleans.py:121
-+msgid "Determine whether polipo can access cifs file systems."
-+msgstr "Bestäm huruvida polipa kan komma åt cifs-filsystem."
++#: booleans.py:124
++msgid "Allow the portage domains to use NFS mounts (regular nfs_t)"
++msgstr "Tillåt porage-domänerna att använda NFS-monteringar (normal nfs_t)"
-#: ../gui/selinux.tbl:218
-msgid "Disable SELinux protection for uucpd daemon"
-msgstr "Avaktivera SELinux-skydd för uucpd-demonen"
-+#: booleans.py:122
-+msgid "Determine whether Polipo can access nfs file systems."
-+msgstr "Bestäm huruvida Polipa kan komma åt nfs-filsystem."
++#: booleans.py:125
++msgid "Allow postfix_local domain full write access to mail_spool directories"
++msgstr ""
++
++#: booleans.py:126
++msgid "Allow postgresql to use ssh and rsync for point-in-time recovery"
++msgstr "Tillåt postgresql att använda ssh och rsync för återskapande av tidpunkt"
++
++#: booleans.py:127
++msgid "Allow transmit client label to foreign database"
++msgstr "Tillåt sändning av klientetiketter till främmande databaser"
++
++#: booleans.py:128
++msgid "Allow database admins to execute DML statement"
++msgstr ""
-#: ../gui/selinux.tbl:219
-msgid "Disable SELinux protection for vmware daemon"
-msgstr "Avaktivera SELinux-skydd för vmware-demonen"
-+#: booleans.py:123
-+msgid "Enable polyinstantiated directory support."
-+msgstr "Aktivera stöd för polyinstantierade kataloger."
++#: booleans.py:129
++msgid "Allow unprivileged users to execute DDL statement"
++msgstr ""
++
++#: booleans.py:130
++msgid "Allow pppd to load kernel modules for certain modems"
++msgstr "Tillåt pppd att ladda kärnmoduler vör vissa modem"
++
++#: booleans.py:131
++msgid "Allow pppd to be run for a regular user"
++msgstr "Tillåt att pppd körs för en vanlig användare"
++
++#: booleans.py:132
++msgid ""
++"Allow privoxy to connect to all ports, not just HTTP, FTP, and Gopher ports."
++msgstr "Tillåt privoxy att ansluta till alla portar, inte bara HTTP-, FTP- och Gopher-portar."
++
++#: booleans.py:133
++msgid "Allow Puppet client to manage all file types."
++msgstr "Tillåt Puppet-klienter att hantara alla filtyper."
++
++#: booleans.py:134
++msgid "Allow Puppet master to use connect to MySQL and PostgreSQL database"
++msgstr ""
-#: ../gui/selinux.tbl:220
-msgid "Disable SELinux protection for watchdog daemon"
-msgstr "Avaktivera SELinux-skydd för watchdog-demonen"
-+#: booleans.py:124
-+msgid "Allow the portage domains to use NFS mounts (regular nfs_t)"
-+msgstr "Tillåt porage-domänerna att använda NFS-monteringar (normal nfs_t)"
++#: booleans.py:135
++msgid "Allow qemu to connect fully to the network"
++msgstr ""
-#: ../gui/selinux.tbl:221
-msgid "Disable SELinux protection for winbind daemon"
-msgstr "Avaktivera SELinux-skydd för winbind-demonen"
-+#: booleans.py:125
-+msgid "Allow postfix_local domain full write access to mail_spool directories"
-+msgstr ""
++#: booleans.py:136
++msgid "Allow qemu to use cifs/Samba file systems"
++msgstr "Tillåt qemu att använda cifs-/Samba-filsystem"
-#: ../gui/selinux.tbl:222
-msgid "Disable SELinux protection for xdm daemon"
-msgstr "Avaktivera SELinux-skydd för xdm-demonen"
-+#: booleans.py:126
-+msgid "Allow postgresql to use ssh and rsync for point-in-time recovery"
-+msgstr "Tillåt postgresql att använda ssh och rsync för återskapande av tidpunkt"
++#: booleans.py:137
++msgid "Allow qemu to use serial/parallel communication ports"
++msgstr "Tillåt qemu att använda seriella/parallella kommunikationsportar"
-#: ../gui/selinux.tbl:223
-msgid "Allow xdm logins as sysadm_r:sysadm_t"
-msgstr "Tillåt xdm-inloggning som sysadm_r:sysadm_t"
-+#: booleans.py:127
-+msgid "Allow transmit client label to foreign database"
-+msgstr "Tillåt sändning av klientetiketter till främmande databaser"
++#: booleans.py:138
++msgid "Allow qemu to use nfs file systems"
++msgstr ""
-#: ../gui/selinux.tbl:224
-msgid "Disable SELinux protection for xen daemon"
-msgstr "Avaktivera SELinux-skydd för xen-demonen"
-+#: booleans.py:128
-+msgid "Allow database admins to execute DML statement"
++#: booleans.py:139
++msgid "Allow qemu to use usb devices"
+msgstr ""
-#: ../gui/selinux.tbl:225
-msgid "XEN"
-msgstr "XEN"
-+#: booleans.py:129
-+msgid "Allow unprivileged users to execute DDL statement"
++#: booleans.py:140
++msgid "Allow racoon to read shadow"
+msgstr ""
-#: ../gui/selinux.tbl:225
-msgid "Allow xen to read/write physical disk devices"
-msgstr "Tillåt xen att läsa/skriva fysiska diskenheter"
-+#: booleans.py:130
-+msgid "Allow pppd to load kernel modules for certain modems"
++#: booleans.py:141
++msgid "Allow rgmanager domain to connect to the network using TCP."
+msgstr ""
-#: ../gui/selinux.tbl:226
-msgid "Disable SELinux protection for xfs daemon"
-msgstr "Avaktivera SELinux-skydd för xfs-demonen"
-+#: booleans.py:131
-+msgid "Allow pppd to be run for a regular user"
-+msgstr "Tillåt att pppd körs för en vanlig användare"
++#: booleans.py:142
++msgid ""
++"Allow rsync to modify public files used for public file transfer services. "
++"Files/Directories must be labeled public_content_rw_t."
++msgstr ""
-#: ../gui/selinux.tbl:227
-msgid "Disable SELinux protection for xen control"
-msgstr "Avaktivera SELinux-skydd för xen-styrning"
-+#: booleans.py:132
-+msgid ""
-+"Allow privoxy to connect to all ports, not just HTTP, FTP, and Gopher ports."
++#: booleans.py:143
++msgid "Allow rsync to run as a client"
+msgstr ""
-#: ../gui/selinux.tbl:228
-msgid "Disable SELinux protection for ypbind daemon"
-msgstr "Avaktivera SELinux-skydd för ypbind-demonen"
-+#: booleans.py:133
-+msgid "Allow Puppet client to manage all file types."
-+msgstr ""
-+
-+#: booleans.py:134
-+msgid "Allow Puppet master to use connect to MySQL and PostgreSQL database"
-+msgstr ""
-+
-+#: booleans.py:135
-+msgid "Allow qemu to connect fully to the network"
-+msgstr ""
-+
-+#: booleans.py:136
-+msgid "Allow qemu to use cifs/Samba file systems"
-+msgstr ""
-+
-+#: booleans.py:137
-+msgid "Allow qemu to use serial/parallel communication ports"
-+msgstr ""
-+
-+#: booleans.py:138
-+msgid "Allow qemu to use nfs file systems"
++#: booleans.py:144
++msgid "Allow rsync to export any files/directories read only."
+msgstr ""
-#: ../gui/selinux.tbl:229
-msgid "Disable SELinux protection for NIS Password Daemon"
-msgstr "Avaktivera SELinux-skydd för NIS-lösenord-demonen"
-+#: booleans.py:139
-+msgid "Allow qemu to use usb devices"
-+msgstr ""
++#: booleans.py:145
++msgid "Allow rsync servers to share cifs files systems"
++msgstr "Tillåt rsync-servrar att dela cifs-filsystem"
-#: ../gui/selinux.tbl:230
-msgid "Disable SELinux protection for ypserv daemon"
-msgstr "Avaktivera SELinux-skydd för ypserv-demonen"
-+#: booleans.py:140
-+msgid "Allow racoon to read shadow"
++#: booleans.py:146
++msgid "Allow rsync servers to share nfs files systems"
+msgstr ""
-#: ../gui/selinux.tbl:231
-msgid "Disable SELinux protection for NIS Transfer Daemon"
-msgstr "Avaktivera SELinux-skydd för NIS Transfer-demonen"
-+#: booleans.py:141
-+msgid "Allow rgmanager domain to connect to the network using TCP."
++#: booleans.py:147
++msgid "Allow samba to create new home directories (e.g. via PAM)"
+msgstr ""
-#: ../gui/selinux.tbl:232
-+#: booleans.py:142
++#: booleans.py:148
msgid ""
-"Allow SELinux webadm user to manage unprivileged users home directories"
-msgstr "Tillåt SELinux webadm-användare att hantera opriviligerade användares hemkataloger"
-+"Allow rsync to modify public files used for public file transfer services. "
-+"Files/Directories must be labeled public_content_rw_t."
-+msgstr ""
++"Allow samba to act as the domain controller, add users, groups and change "
++"passwords."
++msgstr "Tillåt samba att agera som domänkontrolleraren, lägga till användare, grupper och ändra lösenord."
-#: ../gui/selinux.tbl:233
-msgid "Allow SELinux webadm user to read unprivileged users home directories"
-msgstr "Tillåt SELinux webadm-användare att läsa opriviligierade användares hemkataloger"
-+#: booleans.py:143
-+msgid "Allow rsync to run as a client"
++#: booleans.py:149
++msgid "Allow samba to share users home directories."
+msgstr ""
-#: ../gui/semanagePage.py:126
-#, python-format
-msgid "Are you sure you want to delete %s '%s'?"
-msgstr "Är du säker på att du vill ta bort %s \"%s\"?"
-+#: booleans.py:144
-+msgid "Allow rsync to export any files/directories read only."
++#: booleans.py:150
++msgid "Allow samba to share any file/directory read only."
+msgstr ""
-#: ../gui/semanagePage.py:126
-#, python-format
-msgid "Delete %s"
-msgstr "Radera %s"
-+#: booleans.py:145
-+msgid "Allow rsync servers to share cifs files systems"
++#: booleans.py:151
++msgid "Allow samba to share any file/directory read/write."
+msgstr ""
-#: ../gui/semanagePage.py:134
-#, python-format
-msgid "Add %s"
-msgstr "Lägg till %s"
-+#: booleans.py:146
-+msgid "Allow rsync servers to share nfs files systems"
++#: booleans.py:152
++msgid "Allow samba to act as a portmapper"
+msgstr ""
-#: ../gui/semanagePage.py:148
-#, python-format
-msgid "Modify %s"
-msgstr "Modifiera %s"
-+#: booleans.py:147
-+msgid "Allow samba to create new home directories (e.g. via PAM)"
++#: booleans.py:153
++msgid "Allow samba to run unconfined scripts"
+msgstr ""
-#: ../gui/statusPage.py:69 ../gui/system-config-selinux.glade:2838
-msgid "Permissive"
-msgstr "Tillåtande"
-+#: booleans.py:148
-+msgid ""
-+"Allow samba to act as the domain controller, add users, groups and change "
-+"passwords."
-+msgstr ""
++#: booleans.py:154
++msgid "Allow samba to export ntfs/fusefs volumes."
++msgstr "Tillåt samba att exportera ntfs-/fusefs-volymer."
-#: ../gui/statusPage.py:70 ../gui/system-config-selinux.glade:2856
-msgid "Enforcing"
-msgstr "Upprätthållande"
-+#: booleans.py:149
-+msgid "Allow samba to share users home directories."
-+msgstr ""
++#: booleans.py:155
++msgid "Allow samba to export NFS volumes."
++msgstr "Tillåt samba att exportera NFS-volymer."
-#: ../gui/statusPage.py:94
-msgid "Status"
-msgstr "Status"
-+#: booleans.py:150
-+msgid "Allow samba to share any file/directory read only."
-+msgstr ""
-
--#: ../gui/statusPage.py:133
-+#: booleans.py:151
-+msgid "Allow samba to share any file/directory read/write."
-+msgstr ""
-+
-+#: booleans.py:152
-+msgid "Allow samba to act as a portmapper"
-+msgstr ""
-+
-+#: booleans.py:153
-+msgid "Allow samba to run unconfined scripts"
-+msgstr ""
-+
-+#: booleans.py:154
-+msgid "Allow samba to export ntfs/fusefs volumes."
-+msgstr ""
-+
-+#: booleans.py:155
-+msgid "Allow samba to export NFS volumes."
-+msgstr ""
-+
+#: booleans.py:156
+msgid "Allow sanlock to read/write fuse files"
+msgstr ""
-+
+
+-#: ../gui/statusPage.py:133
+#: booleans.py:157
+msgid "Allow sanlock to manage nfs files"
+msgstr ""
@@ -293508,12 +293524,12 @@ index dd71256..4c8d43e 100644
-msgstr "Att byta policytyp kommer medföra en ometikettering av hela filsystemet vid nästa omstart. Ometikettering tar en lång tid, beroende på storleken på filsystemet. Vill du fortsätta?"
+"disallow programs, such as newrole, from transitioning to administrative "
+"user domains."
-+msgstr ""
++msgstr "neka progra, såsom newrole, från att gå över till administrativa användardomäner."
-#: ../gui/statusPage.py:147
+#: booleans.py:161
+msgid "Disable kernel module loading."
-+msgstr ""
++msgstr "Avaktivera laddning av kärnmoduler."
+
+#: booleans.py:162
msgid ""
@@ -293527,7 +293543,7 @@ index dd71256..4c8d43e 100644
+"Boolean to determine whether the system permits loading policy, setting "
+"enforcing mode, and changing boolean values. Set this to true and you have "
+"to reboot to set it back."
-+msgstr ""
++msgstr "Boolean för att bestämma huruvida systemet tillåter laddning av policy, inställning av tvingande läge, och ändring av booleaners värde. Om du ställer in detta till sant måste du starta om för att ställa tillbaka det."
-#: ../gui/statusPage.py:152
+#: booleans.py:163
@@ -293543,7 +293559,7 @@ index dd71256..4c8d43e 100644
+"Allow unconfined executables to make their heap memory executable. Doing "
+"this is a really bad idea. Probably indicates a badly coded executable, but "
+"could indicate an attack. This executable should be reported in bugzilla"
-+msgstr ""
++msgstr "Tillåt obegränsade program att göra heap-minnet körbart. Att göra detta är en dålig idé. Förmodligen indikerar det ett dåligt skrivet program, men kan också vara tecken på en attack. Detta program bör rapporteras i bugzilla"
-#: ../gui/system-config-selinux.glade:11
-msgid "system-config-selinux"
@@ -293552,7 +293568,7 @@ index dd71256..4c8d43e 100644
+msgid ""
+"Allow all unconfined executables to use libraries requiring text relocation "
+"that are not labeled textrel_shlib_t"
-+msgstr ""
++msgstr "Tillåt obegränsade program att använda bibliotek som behöver textomlokaliseringar som inte har etiketten textrel_shlib_t"
-#: ../gui/system-config-selinux.glade:12
+#: booleans.py:166
@@ -293563,7 +293579,7 @@ index dd71256..4c8d43e 100644
+"Allow unconfined executables to make their stack executable. This should "
+"never, ever be necessary. Probably indicates a badly coded executable, but "
+"could indicate an attack. This executable should be reported in bugzilla"
-+msgstr ""
++msgstr "Tillåt obegränsade program att göra sin stack körbar. Detta borde aldrig någonsin vara nödvändigt. Förmodligen indikerar det ett dåligt skrivet program, men kan också vara tecken på en attack. Detta program bör rapporteras i bugzilla"
-#: ../gui/system-config-selinux.glade:22
-#: ../gui/system-config-selinux.glade:544
@@ -293627,7 +293643,7 @@ index dd71256..4c8d43e 100644
-msgstr "alla filer\nvanliga filer\nkataloger\nteckenenhet\nblockenhet\nuttag\nsymbolisk länk\nnamngivet rör\n"
+"Allow anon internal-sftp to upload files, used for public file transfer "
+"services. Directories must be labeled public_content_rw_t."
-+msgstr ""
++msgstr "Tillån anonym intern-sftp att skicka upp filer, använda för publika filöverföringstjänster. Kataloger måste ha etiketten public_content_rw_t."
-#: ../gui/system-config-selinux.glade:773
-msgid "MLS"
@@ -293644,7 +293660,7 @@ index dd71256..4c8d43e 100644
+msgid ""
+"Allow sftp-internal to login to local users and read/write all files on the "
+"system, governed by DAC."
-+msgstr ""
++msgstr "Tillåt sftp-intern att logga in som lokala användare och läsa/skriva alla filer på systemet, styrt av DAC."
-#: ../gui/system-config-selinux.glade:1079
-msgid "SELinux Administration"
@@ -293676,7 +293692,7 @@ index dd71256..4c8d43e 100644
+msgid ""
+"Enable additional permissions needed to support devices on 3ware "
+"controllers."
-+msgstr ""
++msgstr "Aktivera ytterliggare tillstånd som behövs för att stödja enheter på 3ware-styrenheter."
-#: ../gui/system-config-selinux.glade:1257
-msgid "Select Management Object"
@@ -293685,7 +293701,7 @@ index dd71256..4c8d43e 100644
+msgid ""
+"Allow samba to modify public files used for public file transfer services. "
+"Files/Directories must be labeled public_content_rw_t."
-+msgstr ""
++msgstr "Tillåt samba att ändra publika filer som används för publika filöverföringstjänster. Filer/kataloger måste ha etiketten public_content_rw_t."
-#: ../gui/system-config-selinux.glade:1274
-msgid "<b>Select:</b>"
@@ -293716,7 +293732,7 @@ index dd71256..4c8d43e 100644
-msgstr "Nuvarande upprätthållande-läge"
+#: booleans.py:184
+msgid "Allow squid to run as a transparent proxy (TPROXY)"
-+msgstr ""
++msgstr "Tillåt squid att köra som en transparent proxy (TPROXY)"
-#: ../gui/system-config-selinux.glade:1419
-msgid "System Default Policy Type: "
@@ -293726,7 +293742,8 @@ index dd71256..4c8d43e 100644
+"Allow ssh with chroot env to read and write files in the user home "
+"directories"
+msgstr ""
-+
+
+-#: ../gui/system-config-selinux.glade:1464
+#: booleans.py:186
+msgid "allow host key based authentication"
+msgstr ""
@@ -293734,8 +293751,7 @@ index dd71256..4c8d43e 100644
+#: booleans.py:187
+msgid "Allow ssh logins as sysadm_r:sysadm_t"
+msgstr "Tillåt ssh-inloggningar som sysadm_r:sysadm_t"
-
--#: ../gui/system-config-selinux.glade:1464
++
+#: booleans.py:188
+msgid "allow staff user to create and transition to svirt domains."
+msgstr ""
@@ -293748,7 +293764,7 @@ index dd71256..4c8d43e 100644
-"relabel is required."
-msgstr "Väl om du vill etikettera om hela filsystemet vid nästa omstart. Ometikettering kan ta väldigt lång tid, beroende på sotrleken av filsystemet. Om du ändrar policytyper eller går från avslaget till tvingande behövs en ometikettering."
+"Allow the Telepathy connection managers to connect to any network port."
-+msgstr ""
++msgstr "Tillåt hanterarna av Telepathy-anslutningar att ansluta till vilken nätverksport som helst."
-#: ../gui/system-config-selinux.glade:1510
-msgid "Relabel on next reboot."
@@ -343674,17 +343690,23 @@ index 0000000..ec9c071
+
+setup(name = "sepolicy", version="1.1", description="Python SELinux Policy Analysys bindings", author="Daniel Walsh", author_email="dwalsh at redhat.com", ext_modules=[policy], packages=["sepolicy", "sepolicy.templates"])
diff --git a/policycoreutils/setfiles/restore.c b/policycoreutils/setfiles/restore.c
-index 4c62b41..bb42221 100644
+index 4c62b41..a3ce406 100644
--- a/policycoreutils/setfiles/restore.c
+++ b/policycoreutils/setfiles/restore.c
-@@ -105,15 +105,26 @@ static int restore(FTSENT *ftsent)
+@@ -100,20 +100,31 @@ static int match(const char *name, struct stat *sb, char **con)
+ else
+ return selabel_lookup_raw(r_opts->hnd, con, name, sb->st_mode);
+ }
+-static int restore(FTSENT *ftsent)
++static int restore(FTSENT *ftsent, int recurse)
+ {
char *my_file = strdupa(ftsent->fts_path);
int ret = -1;
security_context_t curcon = NULL, newcon = NULL;
+ float progress;
+ if (match(my_file, ftsent->fts_statp, &newcon) < 0) {
-+ if (errno == ENOENT)
-+ fprintf(stdout, "%s: No default label for %s\n", r_opts->progname, my_file);
++ if ((errno == ENOENT) && (!recurse))
++ fprintf(stderr, "%s: Warning no default label for %s\n", r_opts->progname, my_file);
- if (match(my_file, ftsent->fts_statp, &newcon) < 0)
/* Check for no matching specification. */
@@ -343706,6 +343728,24 @@ index 4c62b41..bb42221 100644
fflush(stdout);
}
}
+@@ -267,7 +278,7 @@ err:
+ * This function is called by fts on each file during
+ * the directory traversal.
+ */
+-static int apply_spec(FTSENT *ftsent)
++static int apply_spec(FTSENT *ftsent, int recurse)
+ {
+ if (ftsent->fts_info == FTS_DNR) {
+ fprintf(stderr, "%s: unable to read directory %s\n",
+@@ -275,7 +286,7 @@ static int apply_spec(FTSENT *ftsent)
+ return SKIP;
+ }
+
+- int rc = restore(ftsent);
++ int rc = restore(ftsent, recurse);
+ if (rc == ERR) {
+ if (!r_opts->abort_on_error)
+ return SKIP;
@@ -283,6 +294,8 @@ static int apply_spec(FTSENT *ftsent)
return rc;
}
@@ -343715,14 +343755,16 @@ index 4c62b41..bb42221 100644
static int process_one(char *name, int recurse_this_path)
{
int rc = 0;
-@@ -332,6 +345,7 @@ static int process_one(char *name, int recurse_this_path)
+@@ -332,7 +345,8 @@ static int process_one(char *name, int recurse_this_path)
continue;
}
}
+- rc = apply_spec(ftsent);
+
- rc = apply_spec(ftsent);
++ rc = apply_spec(ftsent, recurse_this_path);
if (rc == SKIP)
fts_set(fts_handle, ftsent, FTS_SKIP);
+ if (rc == ERR)
@@ -611,12 +625,22 @@ static int filespec_add(ino_t ino, const security_context_t con, const char *fil
}
@@ -343816,10 +343858,30 @@ index ac27222..57ae46a 100644
#endif
diff --git a/policycoreutils/setfiles/restorecon.8 b/policycoreutils/setfiles/restorecon.8
-index ffbb9d1..91d02bd 100644
+index ffbb9d1..8659294 100644
--- a/policycoreutils/setfiles/restorecon.8
+++ b/policycoreutils/setfiles/restorecon.8
-@@ -55,7 +55,8 @@ don't change any file labels (passive check).
+@@ -41,28 +41,31 @@ default file context, changing the user, role, range portion as well as the type
+ .TP
+ .B \-h, \-?
+ display usage information and exit.
+-.TP
++.TP
+ .B \-i
+ ignore files that do not exist.
+-.TP
++.TP
+ .B \-R, \-r
+ change files and directories file labels recursively (descend directories).
+-.TP
++.br
++.B Note: restorecon does not report warnings on paths without default labels, when run recursively.
++.TP
+ .B \-n
+ don't change any file labels (passive check).
+-.TP
++.TP
+ .B \-o outfilename
save list of files with incorrect context in outfilename.
.TP
.B \-p
@@ -343829,6 +343891,23 @@ index ffbb9d1..91d02bd 100644
.TP
.B \-R, \-r
change files and directories file labels recursively (descend directories).
+ .TP
+ .B \-v
+ show changes in file labels, if type or role are going to be changed.
+-.TP
++.TP
+ .B \-0
+ the separator for the input items is assumed to be the null character
+ (instead of the white space). The quotes and the backslash characters are
+@@ -84,7 +87,7 @@ operate recursively on directories.
+
+ .SH "AUTHOR"
+ This man page was written by Dan Walsh <dwalsh at redhat.com>.
+-Some of the content of this man page was taken from the setfiles
++Some of the content of this man page was taken from the setfiles
+ man page written by Russell Coker <russell at coker.com.au>.
+ The program was written by Dan Walsh <dwalsh at redhat.com>.
+
diff --git a/policycoreutils/setfiles/setfiles.8 b/policycoreutils/setfiles/setfiles.8
index 7ff54f9..89d2a49 100644
--- a/policycoreutils/setfiles/setfiles.8
diff --git a/policycoreutils.spec b/policycoreutils.spec
index a53e9f5..16d7d8b 100644
--- a/policycoreutils.spec
+++ b/policycoreutils.spec
@@ -7,7 +7,7 @@
Summary: SELinux policy core utilities
Name: policycoreutils
Version: 2.1.13
-Release: 26%{?dist}
+Release: 27%{?dist}
License: GPLv2
Group: System Environment/Base
# Based on git repository with tag 20101221
@@ -328,6 +328,11 @@ The policycoreutils-restorecond package contains the restorecond service.
%{_bindir}/systemctl try-restart restorecond.service >/dev/null 2>&1 || :
%changelog
+* Wed Nov 7 2012 Dan Walsh <dwalsh at redhat.com> - 2.1.12-27
+- Only report restorecon warning for missing default label, if not running
+recusively
+- Update translations
+
* Mon Nov 5 2012 Dan Walsh <dwalsh at redhat.com> - 2.1.12-26
- Fix semanage booleans -l, move more boolean_dict handling into sepolicy
- Update translations
More information about the scm-commits
mailing list