diff --git a/README.en.md b/README.en.md deleted file mode 100644 index 011b62f..0000000 --- a/README.en.md +++ /dev/null @@ -1,36 +0,0 @@ -# secpaver - -#### Description -Security policy development tool - -#### Software Architecture -Software architecture description - -#### Installation - -1. xxxx -2. xxxx -3. xxxx - -#### Instructions - -1. xxxx -2. xxxx -3. xxxx - -#### Contribution - -1. Fork the repository -2. Create Feat_xxx branch -3. Commit your code -4. Create Pull Request - - -#### Gitee Feature - -1. You can use Readme\_XXX.md to support different languages, such as Readme\_en.md, Readme\_zh.md -2. Gitee blog [blog.gitee.com](https://blog.gitee.com) -3. Explore open source project [https://gitee.com/explore](https://gitee.com/explore) -4. The most valuable open source project [GVP](https://gitee.com/gvp) -5. The manual of Gitee [https://gitee.com/help](https://gitee.com/help) -6. The most popular members [https://gitee.com/gitee-stars/](https://gitee.com/gitee-stars/) diff --git a/README.md b/README.md deleted file mode 100644 index 9e52356..0000000 --- a/README.md +++ /dev/null @@ -1,37 +0,0 @@ -# secpaver - -#### 介绍 -Security policy development tool - -#### 软件架构 -软件架构说明 - - -#### 安装教程 - -1. xxxx -2. xxxx -3. xxxx - -#### 使用说明 - -1. xxxx -2. xxxx -3. xxxx - -#### 参与贡献 - -1. Fork 本仓库 -2. 新建 Feat_xxx 分支 -3. 提交代码 -4. 新建 Pull Request - - -#### 特技 - -1. 使用 Readme\_XXX.md 来支持不同的语言,例如 Readme\_en.md, Readme\_zh.md -2. Gitee 官方博客 [blog.gitee.com](https://blog.gitee.com) -3. 你可以 [https://gitee.com/explore](https://gitee.com/explore) 这个地址来了解 Gitee 上的优秀开源项目 -4. [GVP](https://gitee.com/gvp) 全称是 Gitee 最有价值开源项目,是综合评定出的优秀开源项目 -5. Gitee 官方提供的使用手册 [https://gitee.com/help](https://gitee.com/help) -6. Gitee 封面人物是一档用来展示 Gitee 会员风采的栏目 [https://gitee.com/gitee-stars/](https://gitee.com/gitee-stars/) diff --git a/dont-do-daemon-reload-in-make-install.patch b/dont-do-daemon-reload-in-make-install.patch new file mode 100644 index 0000000..b0e7c31 --- /dev/null +++ b/dont-do-daemon-reload-in-make-install.patch @@ -0,0 +1,24 @@ +From 829e8d1857fe2ba5941f63eac60ef12c82cc6e9b Mon Sep 17 00:00:00 2001 +From: luhuaxin <1539327763@qq.com> +Date: Thu, 30 Sep 2021 20:04:05 +0800 +Subject: [PATCH] dont do daemon reload in make install + +Signed-off-by: luhuaxin <1539327763@qq.com> +--- + Makefile | 1 - + 1 file changed, 1 deletion(-) + +diff --git a/Makefile b/Makefile +index ea6fdf3..858346a 100644 +--- a/Makefile ++++ b/Makefile +@@ -83,6 +83,5 @@ install: + install -m 500 misc/scripts/selinux/*.sh $(SCRIPTS_DIR)/selinux + install -m 600 misc/scripts/selinux/config $(SCRIPTS_DIR)/selinux + install -m 600 misc/pavd.service $(SYSTEMD_DIR) +- systemctl daemon-reload + + @echo "END INSTALL secPaver" +-- +1.8.3.1 + diff --git a/secpaver-1.0.2.tar.gz b/secpaver-1.0.2.tar.gz new file mode 100644 index 0000000..15d1b55 Binary files /dev/null and b/secpaver-1.0.2.tar.gz differ diff --git a/secpaver.spec b/secpaver.spec new file mode 100755 index 0000000..7900c55 --- /dev/null +++ b/secpaver.spec @@ -0,0 +1,80 @@ + +Name: secpaver +Summary: Security policy development tool +Version: 1.0.2 +Release: 2 +License: Mulan PSL v2 +URL: https://gitee.com/openeuler/secpaver +Source: https://gitee.com/openeuler/secpaver/repository/archive/%{name}-%{version}.tar.gz + +Patch0001: dont-do-daemon-reload-in-make-install.patch +Patch0002: set-default-log-path.patch + +BuildRequires: golang make +Requires: %{name}-plugin = %{version}-%{release} + +%define debug_package %{nil} + +%description +Security policy development tool + +%package selinux +Summary: SELinux plugin for secPaver +License: MuLan PSL v2 +BuildRequires: libselinux-devel libsepol-devel libsemanage-devel +Requires: %{name} = %{version}-%{release} +Requires: libselinux libsepol libsemanage checkpolicy policycoreutils +Provides: %{name}-plugin = %{version}-%{release} + +%description selinux +SELinux plugin for secPaver. + +%prep +%autosetup -n %{name}-%{version} -p1 + +%build +%make_build everything + +%install +%make_install DESTDIR="%{buildroot}" + +%check + +%files +%defattr(0600,root,root,0700) +%attr(0700,root,root) %{_bindir}/pav +%attr(0700,root,root) %{_bindir}/pavd +%dir %{_sysconfdir}/secpaver +%dir %{_sysconfdir}/secpaver/pavd +%dir %{_libdir}/secpaver +%dir %{_datadir}/secpaver +%dir %{_datadir}/secpaver/scripts +%dir %{_localstatedir}/local/secpaver +%dir %{_localstatedir}/local/secpaver/policies +%dir %{_localstatedir}/local/secpaver/projects +%config(noreplace) %{_sysconfdir}/secpaver/pavd/config.json +%{_unitdir}/pavd.service + +%files selinux +%defattr(0600,root,root,0700) +%attr(0700,root,root) %{_libdir}/secpaver/selinux.so +%dir %{_localstatedir}/local/secpaver/policies/selinux +%dir %{_datadir}/secpaver/scripts/selinux +%{_datadir}/secpaver/scripts/selinux/config +%attr(0700,root,root) %{_datadir}/secpaver/scripts/selinux/*.sh + +%post +%systemd_post pavd.service + +%preun +%systemd_preun pavd.service + +%postun +%systemd_postun_with_restart pavd.service + +%changelog +* Thu Sep 30 2021 luhuaxin <1539327763@qq.com> - 1.0.2-2 +- set default log path + +* Thu Sep 30 2021 luhuaxin <1539327763@qq.com> - 1.0.2-1 +- Package init diff --git a/set-default-log-path.patch b/set-default-log-path.patch new file mode 100644 index 0000000..e75230a --- /dev/null +++ b/set-default-log-path.patch @@ -0,0 +1,31 @@ +From d416900818c635feb180ba85660d77cf83c99daa Mon Sep 17 00:00:00 2001 +From: luhuaxin <1539327763@qq.com> +Date: Thu, 30 Sep 2021 20:46:12 +0800 +Subject: [PATCH] set default log path + +Signed-off-by: luhuaxin <1539327763@qq.com> +--- + misc/config/config.json | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/misc/config/config.json b/misc/config/config.json +index 49b9e0b..1e16f16 100644 +--- a/misc/config/config.json ++++ b/misc/config/config.json +@@ -8,10 +8,10 @@ + "policies": "/var/local/secpaver/policies" + }, + "log":{ +- "path":"", ++ "path":"/var/log/secpaver/pavd.log", + "level":"info", + "maxFileSize": 10, + "maxFileNum": 20, + "maxFileAge": 30 + } +-} +\ No newline at end of file ++} +-- +1.8.3.1 +