Tree - rpms/cups - CentOS Git server

rpms / cups

Blame cups-lspp.patch

Blob History Raw

Tim Waugh	22cc21	`--- cups-1.2.4-orig/config.h.in 2006-06-05 14:42:53.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/config.h.in 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	5dd986	`@@ -443,6 +443,13 @@`
Tim Waugh	5dd986	`#undef HAVE_APPLETALK_AT_PROTO_H`
Tim Waugh	5dd986
Tim Waugh	5dd986
Tim Waugh	5dd986	`+/*`
Tim Waugh	5dd986	`+ * Are we trying to meet LSPP requirements?`
Tim Waugh	5dd986	`+ */`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+#undef WITH_LSPP`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`#endif /* !_CUPS_CONFIG_H_ */`
Tim Waugh	5dd986
Tim Waugh	5dd986	`/*`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/configure.in 2006-08-04 12:51:58.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/configure.in 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	75d0e8	`@@ -47,6 +47,8 @@`
Tim Waugh	75d0e8	`sinclude(config-scripts/cups-pdf.m4)`
Tim Waugh	75d0e8	`sinclude(config-scripts/cups-scripting.m4)`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+sinclude(config-scripts/cups-lspp.m4)`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`INSTALL_LANGUAGES=""`
Tim Waugh	75d0e8	`UNINSTALL_LANGUAGES=""`
Tim Waugh	75d0e8	`LANGFILES=""`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/config-scripts/cups-lspp.m4 1969-12-31 19:00:00.000000000 -0500`
Tim Waugh	22cc21	`+++ cups-1.2.4/config-scripts/cups-lspp.m4 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	9ad376	`@@ -0,0 +1,36 @@`
Tim Waugh	9ad376	`+dnl`
Tim Waugh	9ad376	`+dnl LSPP code for the Common UNIX Printing System (CUPS).`
Tim Waugh	9ad376	`+dnl`
Tim Waugh	9ad376	`+dnl Copyright 2005-2006 by Hewlett-Packard Development Company, L.P.`
Tim Waugh	9ad376	`+dnl`
Tim Waugh	9ad376	`+dnl This program is free software; you can redistribute it and/or modify`
Tim Waugh	9ad376	`+dnl it under the terms of the GNU General Public License as published by`
Tim Waugh	9ad376	`+dnl the Free Software Foundation; version 2.`
Tim Waugh	9ad376	`+dnl`
Tim Waugh	9ad376	`+dnl This program is distributed in the hope that it will be useful, but`
Tim Waugh	9ad376	`+dnl WITHOUT ANY WARRANTY; without even the implied warranty of`
Tim Waugh	9ad376	`+dnl MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU`
Tim Waugh	9ad376	`+dnl General Public License for more details.`
Tim Waugh	9ad376	`+dnl`
Tim Waugh	9ad376	`+dnl You should have received a copy of the GNU General Public License`
Tim Waugh	9ad376	`+dnl along with this program; if not, write to the Free Software Foundation,`
Tim Waugh	9ad376	`+dnl Inc., 51 Franklin Street, Fifth Floor Boston, MA 02110-1301 USA`
Tim Waugh	9ad376	`+dnl`
Tim Waugh	9ad376	`+`
Tim Waugh	9ad376	`+dnl Are we trying to meet LSPP requirements`
Tim Waugh	9ad376	`+AC_ARG_ENABLE(lspp, [ --enable-lspp turn on auditing and label support, default=no])`
Tim Waugh	9ad376	`+`
Tim Waugh	9ad376	`+if test x"$enable_lspp" != xno; then`
Tim Waugh	9ad376	`+ case "$uname" in`
Tim Waugh	9ad376	`+ Linux)`
Tim Waugh	9ad376	`+ AC_CHECK_LIB(audit,audit_log_user_message, [LIBAUDIT="-laudit" AC_SUBST(LIBAUDIT)])`
Tim Waugh	9ad376	`+ AC_CHECK_HEADER(libaudit.h)`
Tim Waugh	9ad376	`+ AC_CHECK_LIB(selinux,getpeercon, [LIBSELINUX="-lselinux" AC_SUBST(LIBSELINUX)])`
Tim Waugh	9ad376	`+ AC_CHECK_HEADER(selinux/selinux.h)`
Tim Waugh	9ad376	`+ AC_DEFINE(WITH_LSPP)`
Tim Waugh	9ad376	`+ ;;`
Tim Waugh	9ad376	`+ *)`
Tim Waugh	9ad376	`+ # All others`
Tim Waugh	9ad376	`+ ;;`
Tim Waugh	9ad376	`+ esac`
Tim Waugh	9ad376	`+fi`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/cups/cups.h 2006-09-07 15:49:34.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/cups/cups.h 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	22cc21	`@@ -24,6 +24,9 @@`
Tim Waugh	5dd986	`* This file is subject to the Apple OS-Developed Software exception.`
Tim Waugh	5dd986	`*/`
Tim Waugh	5dd986
Tim Waugh	5dd986	`+/* Copyright (C) 2005 Trusted Computer Solutions, Inc. */`
Tim Waugh	22cc21	`+/* (c) Copyright 2005-2006 Hewlett-Packard Development Company, L.P. */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`#ifndef _CUPS_CUPS_H_`
Tim Waugh	5dd986	`# define _CUPS_CUPS_H_`
Tim Waugh	5dd986
Tim Waugh	22cc21	`@@ -68,6 +71,12 @@`
Tim Waugh	5dd986	`# define CUPS_DATE_ANY -1`
Tim Waugh	5dd986
Tim Waugh	5dd986
Tim Waugh	5dd986	`+# ifdef WITH_LSPP`
Tim Waugh	5dd986	`+# define MLS_CONFIG "mls"`
Tim Waugh	5dd986	`+# define TE_CONFIG "te"`
Tim Waugh	5dd986	`+# define SELINUX_CONFIG "SELinux"`
Tim Waugh	5dd986	`+# define UNKNOWN_SL "UNKNOWN SL"`
Tim Waugh	5dd986	`+# endif /* WITH_LSPP */`
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* Types and structures...`
Tim Waugh	5dd986	`*/`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/data/Makefile 2006-03-18 22:23:34.000000000 -0500`
Tim Waugh	22cc21	`+++ cups-1.2.4/data/Makefile 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	5dd986	`@@ -34,7 +34,10 @@`
Tim Waugh	5dd986	`secret \`
Tim Waugh	5dd986	`standard \`
Tim Waugh	5dd986	`topsecret \`
Tim Waugh	5dd986	`- unclassified`
Tim Waugh	5dd986	`+ unclassified \`
Tim Waugh	5dd986	`+ selinux \`
Tim Waugh	5dd986	`+ mls \`
Tim Waugh	5dd986	`+ te`
Tim Waugh	5dd986
Tim Waugh	5dd986	`CHARMAPS = \`
Tim Waugh	5dd986	`euc-cn.txt \`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/data/mls 1969-12-31 19:00:00.000000000 -0500`
Tim Waugh	22cc21	`+++ cups-1.2.4/data/mls 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	75d0e8	`@@ -0,0 +1,277 @@`
Tim Waugh	75d0e8	`+%!PS-Adobe-3.0`
Tim Waugh	75d0e8	`+%%BoundingBox: 0 0 612 792`
Tim Waugh	75d0e8	`+%%Pages: 1`
Tim Waugh	75d0e8	`+%%LanguageLevel: 1`
Tim Waugh	75d0e8	`+%%DocumentData: Clean7Bit`
Tim Waugh	75d0e8	`+%%DocumentSuppliedResources: procset bannerprint/1.0`
Tim Waugh	75d0e8	`+%%DocumentNeededResources: font Helvetica Helvetica-Bold Times-Roman`
Tim Waugh	75d0e8	`+%%Creator: Michael Sweet, Easy Software Products`
Tim Waugh	75d0e8	`+%%CreationDate: May 10, 2000`
Tim Waugh	75d0e8	`+%%Title: Test Page`
Tim Waugh	75d0e8	`+%%EndComments`
Tim Waugh	75d0e8	`+%%BeginProlog`
Tim Waugh	75d0e8	`+%%BeginResource procset bannerprint 1.1 0`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% PostScript banner page for the Common UNIX Printing System ("CUPS").`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Copyright 1993-2005 by Easy Software Products`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% These coded instructions, statements, and computer programs are the`
Tim Waugh	75d0e8	`+% property of Easy Software Products and are protected by Federal`
Tim Waugh	75d0e8	`+% copyright law. Distribution and use rights are outlined in the file`
Tim Waugh	75d0e8	`+% "LICENSE.txt" which should have been included with this file. If this`
Tim Waugh	75d0e8	`+% file is missing or damaged please contact Easy Software Products`
Tim Waugh	75d0e8	`+% at:`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Attn: CUPS Licensing Information`
Tim Waugh	75d0e8	`+% Easy Software Products`
Tim Waugh	75d0e8	`+% 44141 Airport View Drive, Suite 204`
Tim Waugh	75d0e8	`+% Hollywood, Maryland 20636 USA`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Voice: (301) 373-9600`
Tim Waugh	75d0e8	`+% EMail: cups-info@cups.org`
Tim Waugh	75d0e8	`+% WWW: http://www.cups.org`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+/CENTER { % Draw centered text`
Tim Waugh	75d0e8	`+ % (name) CENTER -`
Tim Waugh	75d0e8	`+ dup stringwidth pop % Get the width of the string`
Tim Waugh	75d0e8	`+ 0.5 mul neg 0 rmoveto % Shift left 1/2 of the distance`
Tim Waugh	75d0e8	`+ show % Show the string`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/RIGHT { % Draw right-justified text`
Tim Waugh	75d0e8	`+ % (name) RIGHT -`
Tim Waugh	75d0e8	`+ dup stringwidth pop % Get the width of the string`
Tim Waugh	75d0e8	`+ neg 0 rmoveto % Shift left the entire distance`
Tim Waugh	75d0e8	`+ show % Show the string`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/NUMBER { % Draw a number`
Tim Waugh	75d0e8	`+ % power n NUMBER -`
Tim Waugh	75d0e8	`+ 1 index 1 eq { % power == 1?`
Tim Waugh	75d0e8	`+ round cvi exch pop % Convert "n" to integer`
Tim Waugh	75d0e8	`+ } {`
Tim Waugh	75d0e8	`+ 1 index mul round exch div % Truncate extra decimal places`
Tim Waugh	75d0e8	`+ } ifelse`
Tim Waugh	75d0e8	`+ 100 string cvs show % Convert to a string and show it...`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/CUPSLOGO { % Draw the CUPS logo`
Tim Waugh	75d0e8	`+ % height CUPSLOGO`
Tim Waugh	75d0e8	`+ % Start with a big C...`
Tim Waugh	75d0e8	`+ /Helvetica findfont 1 index scalefont setfont`
Tim Waugh	75d0e8	`+ 0 setgray`
Tim Waugh	75d0e8	`+ 0 0 moveto`
Tim Waugh	75d0e8	`+ (C) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Then "UNIX Printing System" much smaller...`
Tim Waugh	75d0e8	`+ /Helvetica-Bold findfont 1 index 9 div scalefont setfont`
Tim Waugh	75d0e8	`+ 0.25 mul`
Tim Waugh	75d0e8	`+ dup dup 2.0 mul moveto`
Tim Waugh	75d0e8	`+ (UNIX) show`
Tim Waugh	75d0e8	`+ dup dup 1.6 mul moveto`
Tim Waugh	75d0e8	`+ (Printing) show`
Tim Waugh	75d0e8	`+ dup 1.2 mul moveto`
Tim Waugh	75d0e8	`+ (System) show`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/ESPLOGO { % Draw the ESP logo`
Tim Waugh	75d0e8	`+ % height ESPLOGO`
Tim Waugh	75d0e8	`+ % Compute the size of the logo...`
Tim Waugh	75d0e8	`+ 0 0`
Tim Waugh	75d0e8	`+ 2 index 1.5 mul 3 index`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Do the "metallic" fill from 10% black to 40% black...`
Tim Waugh	75d0e8	`+ 1 -0.001 0 {`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ -0.15 mul % loopval * -0.15`
Tim Waugh	75d0e8	`+ 0.9 add % 0.9 - loopval * 0.15`
Tim Waugh	75d0e8	`+ setgray % set gray shade`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 % x`
Tim Waugh	75d0e8	`+ 1 index neg % loopval`
Tim Waugh	75d0e8	`+ 1 add % 1 - loopval`
Tim Waugh	75d0e8	`+ 3 index % height`
Tim Waugh	75d0e8	`+ mul % height * (1 - loopval)`
Tim Waugh	75d0e8	`+ moveto % starting point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ 3 index % width`
Tim Waugh	75d0e8	`+ mul % loopval * width`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 % x`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ closepath`
Tim Waugh	75d0e8	`+ fill`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ 0.15 mul % loopval * 0.15`
Tim Waugh	75d0e8	`+ 0.6 add % 0.6 + loopval * 0.15`
Tim Waugh	75d0e8	`+ setgray`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ neg 1 add % 1 - loopval`
Tim Waugh	75d0e8	`+ 3 index % width`
Tim Waugh	75d0e8	`+ mul % (1 - loopval) * width`
Tim Waugh	75d0e8	`+ 0 % y`
Tim Waugh	75d0e8	`+ moveto % Starting point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 2 index % width`
Tim Waugh	75d0e8	`+ exch % loopval`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ mul % loopval * height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 1 index % width`
Tim Waugh	75d0e8	`+ 0 % y`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ closepath`
Tim Waugh	75d0e8	`+ fill`
Tim Waugh	75d0e8	`+ } for`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 setgray rectstroke`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /Helvetica-BoldOblique findfont 1 index 3 div scalefont setfont`
Tim Waugh	75d0e8	`+ dup 40 div`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup 4 mul 1 index 25 mul moveto (E) show`
Tim Waugh	75d0e8	`+ dup 10 mul 1 index 15 mul moveto (S) show`
Tim Waugh	75d0e8	`+ dup 16 mul 1 index 5 mul moveto (P) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /Helvetica-BoldOblique findfont 2 index 5 div scalefont setfont`
Tim Waugh	75d0e8	`+ dup 14 mul 1 index 29 mul moveto (asy) show`
Tim Waugh	75d0e8	`+ dup 20 mul 1 index 19 mul moveto (oftware) show`
Tim Waugh	75d0e8	`+ dup 26 mul 1 index 9 mul moveto (roducts) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pop`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+%%EndResource`
Tim Waugh	75d0e8	`+%%EndProlog`
Tim Waugh	75d0e8	`+%%Page: 1 1`
Tim Waugh	75d0e8	`+gsave`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Determine the imageable area and device resolution...`
Tim Waugh	75d0e8	`+ initclip newpath clippath pathbbox % Get bounding rectangle`
Tim Waugh	75d0e8	`+ 72 div /pageTop exch def % Get top margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageRight exch def % Get right margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageBottom exch def % Get bottom margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageLeft exch def % Get left margin in inches`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /pageWidth pageRight pageLeft sub def % pageWidth = pageRight - pageLeft`
Tim Waugh	75d0e8	`+ /pageHeight pageTop pageBottom sub def% pageHeight = pageTop - pageBottom`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /boxWidth % width of text box`
Tim Waugh	75d0e8	`+ pageWidth pageHeight lt`
Tim Waugh	75d0e8	`+ { pageWidth 54 mul }`
Tim Waugh	75d0e8	`+ { pageHeight 42 mul }`
Tim Waugh	75d0e8	`+ ifelse def`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ newpath % Clear bounding path`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Create fonts...`
Tim Waugh	75d0e8	`+ /bigFont /Helvetica-Bold findfont % bigFont = Helvetica-Bold`
Tim Waugh	75d0e8	`+ pageHeight 3 mul scalefont def % size = pageHeight * 3 (nominally 33)`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /mediumFont /Helvetica findfont % mediumFont = Helvetica`
Tim Waugh	75d0e8	`+ pageHeight 1.5 mul scalefont def % size = pageHeight * 1.5 (nominally 16.5)`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Offset page to account for lower-left margin...`
Tim Waugh	75d0e8	`+ pageLeft 72 mul`
Tim Waugh	75d0e8	`+ pageBottom 72 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Draw the label at the top and bottom...`
Tim Waugh	75d0e8	`+ 0 setgray % Color`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % Center of page`
Tim Waugh	75d0e8	`+ pageHeight 72 mul % Top of page`
Tim Waugh	75d0e8	`+ pageWidth -7 mul add % - 2 lines`
Tim Waugh	75d0e8	`+ moveto % Position text`
Tim Waugh	75d0e8	`+ bigFont setfont % Font`
Tim Waugh	75d0e8	`+ ({mls-label}) CENTER % Show text centered`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % Center of page`
Tim Waugh	75d0e8	`+ pageHeight 6 mul % Bottom of page`
Tim Waugh	75d0e8	`+ moveto % Position text`
Tim Waugh	75d0e8	`+ bigFont setfont % Font`
Tim Waugh	75d0e8	`+ ({mls-label}) CENTER % Show text centered`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Job information box...`
Tim Waugh	75d0e8	`+ pageWidth 36 mul 9 add % x = pageWidth * 1/2 * 72 + 9`
Tim Waugh	75d0e8	`+ boxWidth 0.5 mul sub % x-= 1/2 box width`
Tim Waugh	75d0e8	`+ pageHeight 30 mul 9 sub % y = pageHeight * 1/2 * 72 - 9`
Tim Waugh	75d0e8	`+ boxWidth % w = box width`
Tim Waugh	75d0e8	`+ pageHeight 14 mul % h = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ 0.5 setgray rectfill % Draw a shadow`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ boxWidth 0.5 mul sub % x-= 1/2 box width`
Tim Waugh	75d0e8	`+ pageHeight 30 mul % y = pageHeight * 1/4 * 72`
Tim Waugh	75d0e8	`+ boxWidth % w = box width`
Tim Waugh	75d0e8	`+ pageHeight 14 mul % h = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 4 copy 1 setgray rectfill % Clear the box to white`
Tim Waugh	75d0e8	`+ 0 setgray rectstroke % Draw a black box around it...`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Job information text...`
Tim Waugh	75d0e8	`+ mediumFont setfont % Medium sized font`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 5 mul add % y += 2 lines`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Job ID: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({printer-name}-{job-id}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 2 mul add % y += 1 line`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Title: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({job-name}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight -1 mul add % y -= 1 line`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Requesting User: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({job-originating-user-name}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight -4 mul add % y -= 2 lines`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Billing Info: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({?job-billing}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Then the CUPS logo....`
Tim Waugh	75d0e8	`+ gsave`
Tim Waugh	75d0e8	`+ pageWidth 4 mul`
Tim Waugh	75d0e8	`+ pageWidth 6 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+ pageWidth 9 mul CUPSLOGO`
Tim Waugh	75d0e8	`+ grestore`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % And the ESP logo....`
Tim Waugh	75d0e8	`+ gsave`
Tim Waugh	75d0e8	`+ pageWidth 59 mul`
Tim Waugh	75d0e8	`+ pageWidth 6 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+ pageWidth 6 mul ESPLOGO`
Tim Waugh	75d0e8	`+ grestore`
Tim Waugh	75d0e8	`+% Show the page...`
Tim Waugh	75d0e8	`+grestore`
Tim Waugh	75d0e8	`+showpage`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% End of "$Id: mls_template,v 1.1 2005/06/27 18:44:46 colmo Exp $".`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+%%EOF`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/data/selinux 1969-12-31 19:00:00.000000000 -0500`
Tim Waugh	22cc21	`+++ cups-1.2.4/data/selinux 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	75d0e8	`@@ -0,0 +1,277 @@`
Tim Waugh	75d0e8	`+%!PS-Adobe-3.0`
Tim Waugh	75d0e8	`+%%BoundingBox: 0 0 612 792`
Tim Waugh	75d0e8	`+%%Pages: 1`
Tim Waugh	75d0e8	`+%%LanguageLevel: 1`
Tim Waugh	75d0e8	`+%%DocumentData: Clean7Bit`
Tim Waugh	75d0e8	`+%%DocumentSuppliedResources: procset bannerprint/1.0`
Tim Waugh	75d0e8	`+%%DocumentNeededResources: font Helvetica Helvetica-Bold Times-Roman`
Tim Waugh	75d0e8	`+%%Creator: Michael Sweet, Easy Software Products`
Tim Waugh	75d0e8	`+%%CreationDate: May 10, 2000`
Tim Waugh	75d0e8	`+%%Title: Test Page`
Tim Waugh	75d0e8	`+%%EndComments`
Tim Waugh	75d0e8	`+%%BeginProlog`
Tim Waugh	75d0e8	`+%%BeginResource procset bannerprint 1.1 0`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% PostScript banner page for the Common UNIX Printing System ("CUPS").`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Copyright 1993-2005 by Easy Software Products`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% These coded instructions, statements, and computer programs are the`
Tim Waugh	75d0e8	`+% property of Easy Software Products and are protected by Federal`
Tim Waugh	75d0e8	`+% copyright law. Distribution and use rights are outlined in the file`
Tim Waugh	75d0e8	`+% "LICENSE.txt" which should have been included with this file. If this`
Tim Waugh	75d0e8	`+% file is missing or damaged please contact Easy Software Products`
Tim Waugh	75d0e8	`+% at:`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Attn: CUPS Licensing Information`
Tim Waugh	75d0e8	`+% Easy Software Products`
Tim Waugh	75d0e8	`+% 44141 Airport View Drive, Suite 204`
Tim Waugh	75d0e8	`+% Hollywood, Maryland 20636 USA`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Voice: (301) 373-9600`
Tim Waugh	75d0e8	`+% EMail: cups-info@cups.org`
Tim Waugh	75d0e8	`+% WWW: http://www.cups.org`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+/CENTER { % Draw centered text`
Tim Waugh	75d0e8	`+ % (name) CENTER -`
Tim Waugh	75d0e8	`+ dup stringwidth pop % Get the width of the string`
Tim Waugh	75d0e8	`+ 0.5 mul neg 0 rmoveto % Shift left 1/2 of the distance`
Tim Waugh	75d0e8	`+ show % Show the string`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/RIGHT { % Draw right-justified text`
Tim Waugh	75d0e8	`+ % (name) RIGHT -`
Tim Waugh	75d0e8	`+ dup stringwidth pop % Get the width of the string`
Tim Waugh	75d0e8	`+ neg 0 rmoveto % Shift left the entire distance`
Tim Waugh	75d0e8	`+ show % Show the string`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/NUMBER { % Draw a number`
Tim Waugh	75d0e8	`+ % power n NUMBER -`
Tim Waugh	75d0e8	`+ 1 index 1 eq { % power == 1?`
Tim Waugh	75d0e8	`+ round cvi exch pop % Convert "n" to integer`
Tim Waugh	75d0e8	`+ } {`
Tim Waugh	75d0e8	`+ 1 index mul round exch div % Truncate extra decimal places`
Tim Waugh	75d0e8	`+ } ifelse`
Tim Waugh	75d0e8	`+ 100 string cvs show % Convert to a string and show it...`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/CUPSLOGO { % Draw the CUPS logo`
Tim Waugh	75d0e8	`+ % height CUPSLOGO`
Tim Waugh	75d0e8	`+ % Start with a big C...`
Tim Waugh	75d0e8	`+ /Helvetica findfont 1 index scalefont setfont`
Tim Waugh	75d0e8	`+ 0 setgray`
Tim Waugh	75d0e8	`+ 0 0 moveto`
Tim Waugh	75d0e8	`+ (C) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Then "UNIX Printing System" much smaller...`
Tim Waugh	75d0e8	`+ /Helvetica-Bold findfont 1 index 9 div scalefont setfont`
Tim Waugh	75d0e8	`+ 0.25 mul`
Tim Waugh	75d0e8	`+ dup dup 2.0 mul moveto`
Tim Waugh	75d0e8	`+ (UNIX) show`
Tim Waugh	75d0e8	`+ dup dup 1.6 mul moveto`
Tim Waugh	75d0e8	`+ (Printing) show`
Tim Waugh	75d0e8	`+ dup 1.2 mul moveto`
Tim Waugh	75d0e8	`+ (System) show`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/ESPLOGO { % Draw the ESP logo`
Tim Waugh	75d0e8	`+ % height ESPLOGO`
Tim Waugh	75d0e8	`+ % Compute the size of the logo...`
Tim Waugh	75d0e8	`+ 0 0`
Tim Waugh	75d0e8	`+ 2 index 1.5 mul 3 index`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Do the "metallic" fill from 10% black to 40% black...`
Tim Waugh	75d0e8	`+ 1 -0.001 0 {`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ -0.15 mul % loopval * -0.15`
Tim Waugh	75d0e8	`+ 0.9 add % 0.9 - loopval * 0.15`
Tim Waugh	75d0e8	`+ setgray % set gray shade`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 % x`
Tim Waugh	75d0e8	`+ 1 index neg % loopval`
Tim Waugh	75d0e8	`+ 1 add % 1 - loopval`
Tim Waugh	75d0e8	`+ 3 index % height`
Tim Waugh	75d0e8	`+ mul % height * (1 - loopval)`
Tim Waugh	75d0e8	`+ moveto % starting point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ 3 index % width`
Tim Waugh	75d0e8	`+ mul % loopval * width`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 % x`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ closepath`
Tim Waugh	75d0e8	`+ fill`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ 0.15 mul % loopval * 0.15`
Tim Waugh	75d0e8	`+ 0.6 add % 0.6 + loopval * 0.15`
Tim Waugh	75d0e8	`+ setgray`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ neg 1 add % 1 - loopval`
Tim Waugh	75d0e8	`+ 3 index % width`
Tim Waugh	75d0e8	`+ mul % (1 - loopval) * width`
Tim Waugh	75d0e8	`+ 0 % y`
Tim Waugh	75d0e8	`+ moveto % Starting point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 2 index % width`
Tim Waugh	75d0e8	`+ exch % loopval`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ mul % loopval * height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 1 index % width`
Tim Waugh	75d0e8	`+ 0 % y`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ closepath`
Tim Waugh	75d0e8	`+ fill`
Tim Waugh	75d0e8	`+ } for`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 setgray rectstroke`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /Helvetica-BoldOblique findfont 1 index 3 div scalefont setfont`
Tim Waugh	75d0e8	`+ dup 40 div`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup 4 mul 1 index 25 mul moveto (E) show`
Tim Waugh	75d0e8	`+ dup 10 mul 1 index 15 mul moveto (S) show`
Tim Waugh	75d0e8	`+ dup 16 mul 1 index 5 mul moveto (P) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /Helvetica-BoldOblique findfont 2 index 5 div scalefont setfont`
Tim Waugh	75d0e8	`+ dup 14 mul 1 index 29 mul moveto (asy) show`
Tim Waugh	75d0e8	`+ dup 20 mul 1 index 19 mul moveto (oftware) show`
Tim Waugh	75d0e8	`+ dup 26 mul 1 index 9 mul moveto (roducts) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pop`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+%%EndResource`
Tim Waugh	75d0e8	`+%%EndProlog`
Tim Waugh	75d0e8	`+%%Page: 1 1`
Tim Waugh	75d0e8	`+gsave`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Determine the imageable area and device resolution...`
Tim Waugh	75d0e8	`+ initclip newpath clippath pathbbox % Get bounding rectangle`
Tim Waugh	75d0e8	`+ 72 div /pageTop exch def % Get top margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageRight exch def % Get right margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageBottom exch def % Get bottom margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageLeft exch def % Get left margin in inches`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /pageWidth pageRight pageLeft sub def % pageWidth = pageRight - pageLeft`
Tim Waugh	75d0e8	`+ /pageHeight pageTop pageBottom sub def% pageHeight = pageTop - pageBottom`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /boxWidth % width of text box`
Tim Waugh	75d0e8	`+ pageWidth pageHeight lt`
Tim Waugh	75d0e8	`+ { pageWidth 54 mul }`
Tim Waugh	75d0e8	`+ { pageHeight 42 mul }`
Tim Waugh	75d0e8	`+ ifelse def`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ newpath % Clear bounding path`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Create fonts...`
Tim Waugh	75d0e8	`+ /bigFont /Helvetica-Bold findfont % bigFont = Helvetica-Bold`
Tim Waugh	75d0e8	`+ pageHeight 3 mul scalefont def % size = pageHeight * 3 (nominally 33)`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /mediumFont /Helvetica findfont % mediumFont = Helvetica`
Tim Waugh	75d0e8	`+ pageHeight 1.5 mul scalefont def % size = pageHeight * 1.5 (nominally 16.5)`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Offset page to account for lower-left margin...`
Tim Waugh	75d0e8	`+ pageLeft 72 mul`
Tim Waugh	75d0e8	`+ pageBottom 72 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Draw the label at the top and bottom...`
Tim Waugh	75d0e8	`+ 0 setgray % Color`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % Center of page`
Tim Waugh	75d0e8	`+ pageHeight 72 mul % Top of page`
Tim Waugh	75d0e8	`+ pageWidth -7 mul add % - 2 lines`
Tim Waugh	75d0e8	`+ moveto % Position text`
Tim Waugh	75d0e8	`+ bigFont setfont % Font`
Tim Waugh	75d0e8	`+ ({mls-label}) CENTER % Show text centered`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % Center of page`
Tim Waugh	75d0e8	`+ pageHeight 6 mul % Bottom of page`
Tim Waugh	75d0e8	`+ moveto % Position text`
Tim Waugh	75d0e8	`+ bigFont setfont % Font`
Tim Waugh	75d0e8	`+ ({mls-label}) CENTER % Show text centered`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Job information box...`
Tim Waugh	75d0e8	`+ pageWidth 36 mul 9 add % x = pageWidth * 1/2 * 72 + 9`
Tim Waugh	75d0e8	`+ boxWidth 0.5 mul sub % x-= 1/2 box width`
Tim Waugh	75d0e8	`+ pageHeight 30 mul 9 sub % y = pageHeight * 1/2 * 72 - 9`
Tim Waugh	75d0e8	`+ boxWidth % w = box width`
Tim Waugh	75d0e8	`+ pageHeight 14 mul % h = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ 0.5 setgray rectfill % Draw a shadow`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ boxWidth 0.5 mul sub % x-= 1/2 box width`
Tim Waugh	75d0e8	`+ pageHeight 30 mul % y = pageHeight * 1/4 * 72`
Tim Waugh	75d0e8	`+ boxWidth % w = box width`
Tim Waugh	75d0e8	`+ pageHeight 14 mul % h = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 4 copy 1 setgray rectfill % Clear the box to white`
Tim Waugh	75d0e8	`+ 0 setgray rectstroke % Draw a black box around it...`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Job information text...`
Tim Waugh	75d0e8	`+ mediumFont setfont % Medium sized font`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 5 mul add % y += 2 lines`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Job ID: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({printer-name}-{job-id}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 2 mul add % y += 1 line`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Title: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({job-name}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight -1 mul add % y -= 1 line`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Requesting User: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({job-originating-user-name}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight -4 mul add % y -= 2 lines`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Billing Info: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({?job-billing}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Then the CUPS logo....`
Tim Waugh	75d0e8	`+ gsave`
Tim Waugh	75d0e8	`+ pageWidth 4 mul`
Tim Waugh	75d0e8	`+ pageWidth 6 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+ pageWidth 9 mul CUPSLOGO`
Tim Waugh	75d0e8	`+ grestore`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % And the ESP logo....`
Tim Waugh	75d0e8	`+ gsave`
Tim Waugh	75d0e8	`+ pageWidth 59 mul`
Tim Waugh	75d0e8	`+ pageWidth 6 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+ pageWidth 6 mul ESPLOGO`
Tim Waugh	75d0e8	`+ grestore`
Tim Waugh	75d0e8	`+% Show the page...`
Tim Waugh	75d0e8	`+grestore`
Tim Waugh	75d0e8	`+showpage`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% End of "$Id: mls_template,v 1.1 2005/06/27 18:44:46 colmo Exp $".`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+%%EOF`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/data/te 1969-12-31 19:00:00.000000000 -0500`
Tim Waugh	22cc21	`+++ cups-1.2.4/data/te 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	75d0e8	`@@ -0,0 +1,277 @@`
Tim Waugh	75d0e8	`+%!PS-Adobe-3.0`
Tim Waugh	75d0e8	`+%%BoundingBox: 0 0 612 792`
Tim Waugh	75d0e8	`+%%Pages: 1`
Tim Waugh	75d0e8	`+%%LanguageLevel: 1`
Tim Waugh	75d0e8	`+%%DocumentData: Clean7Bit`
Tim Waugh	75d0e8	`+%%DocumentSuppliedResources: procset bannerprint/1.0`
Tim Waugh	75d0e8	`+%%DocumentNeededResources: font Helvetica Helvetica-Bold Times-Roman`
Tim Waugh	75d0e8	`+%%Creator: Michael Sweet, Easy Software Products`
Tim Waugh	75d0e8	`+%%CreationDate: May 10, 2000`
Tim Waugh	75d0e8	`+%%Title: Test Page`
Tim Waugh	75d0e8	`+%%EndComments`
Tim Waugh	75d0e8	`+%%BeginProlog`
Tim Waugh	75d0e8	`+%%BeginResource procset bannerprint 1.1 0`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% PostScript banner page for the Common UNIX Printing System ("CUPS").`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Copyright 1993-2005 by Easy Software Products`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% These coded instructions, statements, and computer programs are the`
Tim Waugh	75d0e8	`+% property of Easy Software Products and are protected by Federal`
Tim Waugh	75d0e8	`+% copyright law. Distribution and use rights are outlined in the file`
Tim Waugh	75d0e8	`+% "LICENSE.txt" which should have been included with this file. If this`
Tim Waugh	75d0e8	`+% file is missing or damaged please contact Easy Software Products`
Tim Waugh	75d0e8	`+% at:`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Attn: CUPS Licensing Information`
Tim Waugh	75d0e8	`+% Easy Software Products`
Tim Waugh	75d0e8	`+% 44141 Airport View Drive, Suite 204`
Tim Waugh	75d0e8	`+% Hollywood, Maryland 20636 USA`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% Voice: (301) 373-9600`
Tim Waugh	75d0e8	`+% EMail: cups-info@cups.org`
Tim Waugh	75d0e8	`+% WWW: http://www.cups.org`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+/CENTER { % Draw centered text`
Tim Waugh	75d0e8	`+ % (name) CENTER -`
Tim Waugh	75d0e8	`+ dup stringwidth pop % Get the width of the string`
Tim Waugh	75d0e8	`+ 0.5 mul neg 0 rmoveto % Shift left 1/2 of the distance`
Tim Waugh	75d0e8	`+ show % Show the string`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/RIGHT { % Draw right-justified text`
Tim Waugh	75d0e8	`+ % (name) RIGHT -`
Tim Waugh	75d0e8	`+ dup stringwidth pop % Get the width of the string`
Tim Waugh	75d0e8	`+ neg 0 rmoveto % Shift left the entire distance`
Tim Waugh	75d0e8	`+ show % Show the string`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/NUMBER { % Draw a number`
Tim Waugh	75d0e8	`+ % power n NUMBER -`
Tim Waugh	75d0e8	`+ 1 index 1 eq { % power == 1?`
Tim Waugh	75d0e8	`+ round cvi exch pop % Convert "n" to integer`
Tim Waugh	75d0e8	`+ } {`
Tim Waugh	75d0e8	`+ 1 index mul round exch div % Truncate extra decimal places`
Tim Waugh	75d0e8	`+ } ifelse`
Tim Waugh	75d0e8	`+ 100 string cvs show % Convert to a string and show it...`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/CUPSLOGO { % Draw the CUPS logo`
Tim Waugh	75d0e8	`+ % height CUPSLOGO`
Tim Waugh	75d0e8	`+ % Start with a big C...`
Tim Waugh	75d0e8	`+ /Helvetica findfont 1 index scalefont setfont`
Tim Waugh	75d0e8	`+ 0 setgray`
Tim Waugh	75d0e8	`+ 0 0 moveto`
Tim Waugh	75d0e8	`+ (C) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Then "UNIX Printing System" much smaller...`
Tim Waugh	75d0e8	`+ /Helvetica-Bold findfont 1 index 9 div scalefont setfont`
Tim Waugh	75d0e8	`+ 0.25 mul`
Tim Waugh	75d0e8	`+ dup dup 2.0 mul moveto`
Tim Waugh	75d0e8	`+ (UNIX) show`
Tim Waugh	75d0e8	`+ dup dup 1.6 mul moveto`
Tim Waugh	75d0e8	`+ (Printing) show`
Tim Waugh	75d0e8	`+ dup 1.2 mul moveto`
Tim Waugh	75d0e8	`+ (System) show`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+/ESPLOGO { % Draw the ESP logo`
Tim Waugh	75d0e8	`+ % height ESPLOGO`
Tim Waugh	75d0e8	`+ % Compute the size of the logo...`
Tim Waugh	75d0e8	`+ 0 0`
Tim Waugh	75d0e8	`+ 2 index 1.5 mul 3 index`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Do the "metallic" fill from 10% black to 40% black...`
Tim Waugh	75d0e8	`+ 1 -0.001 0 {`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ -0.15 mul % loopval * -0.15`
Tim Waugh	75d0e8	`+ 0.9 add % 0.9 - loopval * 0.15`
Tim Waugh	75d0e8	`+ setgray % set gray shade`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 % x`
Tim Waugh	75d0e8	`+ 1 index neg % loopval`
Tim Waugh	75d0e8	`+ 1 add % 1 - loopval`
Tim Waugh	75d0e8	`+ 3 index % height`
Tim Waugh	75d0e8	`+ mul % height * (1 - loopval)`
Tim Waugh	75d0e8	`+ moveto % starting point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ 3 index % width`
Tim Waugh	75d0e8	`+ mul % loopval * width`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 % x`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ closepath`
Tim Waugh	75d0e8	`+ fill`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ 0.15 mul % loopval * 0.15`
Tim Waugh	75d0e8	`+ 0.6 add % 0.6 + loopval * 0.15`
Tim Waugh	75d0e8	`+ setgray`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup % loopval`
Tim Waugh	75d0e8	`+ neg 1 add % 1 - loopval`
Tim Waugh	75d0e8	`+ 3 index % width`
Tim Waugh	75d0e8	`+ mul % (1 - loopval) * width`
Tim Waugh	75d0e8	`+ 0 % y`
Tim Waugh	75d0e8	`+ moveto % Starting point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 2 index % width`
Tim Waugh	75d0e8	`+ exch % loopval`
Tim Waugh	75d0e8	`+ 2 index % height`
Tim Waugh	75d0e8	`+ mul % loopval * height`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 1 index % width`
Tim Waugh	75d0e8	`+ 0 % y`
Tim Waugh	75d0e8	`+ lineto % Next point`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ closepath`
Tim Waugh	75d0e8	`+ fill`
Tim Waugh	75d0e8	`+ } for`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 0 setgray rectstroke`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /Helvetica-BoldOblique findfont 1 index 3 div scalefont setfont`
Tim Waugh	75d0e8	`+ dup 40 div`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ dup 4 mul 1 index 25 mul moveto (E) show`
Tim Waugh	75d0e8	`+ dup 10 mul 1 index 15 mul moveto (S) show`
Tim Waugh	75d0e8	`+ dup 16 mul 1 index 5 mul moveto (P) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /Helvetica-BoldOblique findfont 2 index 5 div scalefont setfont`
Tim Waugh	75d0e8	`+ dup 14 mul 1 index 29 mul moveto (asy) show`
Tim Waugh	75d0e8	`+ dup 20 mul 1 index 19 mul moveto (oftware) show`
Tim Waugh	75d0e8	`+ dup 26 mul 1 index 9 mul moveto (roducts) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pop`
Tim Waugh	75d0e8	`+} bind def`
Tim Waugh	75d0e8	`+%%EndResource`
Tim Waugh	75d0e8	`+%%EndProlog`
Tim Waugh	75d0e8	`+%%Page: 1 1`
Tim Waugh	75d0e8	`+gsave`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Determine the imageable area and device resolution...`
Tim Waugh	75d0e8	`+ initclip newpath clippath pathbbox % Get bounding rectangle`
Tim Waugh	75d0e8	`+ 72 div /pageTop exch def % Get top margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageRight exch def % Get right margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageBottom exch def % Get bottom margin in inches`
Tim Waugh	75d0e8	`+ 72 div /pageLeft exch def % Get left margin in inches`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /pageWidth pageRight pageLeft sub def % pageWidth = pageRight - pageLeft`
Tim Waugh	75d0e8	`+ /pageHeight pageTop pageBottom sub def% pageHeight = pageTop - pageBottom`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /boxWidth % width of text box`
Tim Waugh	75d0e8	`+ pageWidth pageHeight lt`
Tim Waugh	75d0e8	`+ { pageWidth 54 mul }`
Tim Waugh	75d0e8	`+ { pageHeight 42 mul }`
Tim Waugh	75d0e8	`+ ifelse def`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ newpath % Clear bounding path`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Create fonts...`
Tim Waugh	75d0e8	`+ /bigFont /Helvetica-Bold findfont % bigFont = Helvetica-Bold`
Tim Waugh	75d0e8	`+ pageHeight 3 mul scalefont def % size = pageHeight * 3 (nominally 33)`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /mediumFont /Helvetica findfont % mediumFont = Helvetica`
Tim Waugh	75d0e8	`+ pageHeight 1.5 mul scalefont def % size = pageHeight * 1.5 (nominally 16.5)`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Offset page to account for lower-left margin...`
Tim Waugh	75d0e8	`+ pageLeft 72 mul`
Tim Waugh	75d0e8	`+ pageBottom 72 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Draw the label at the top and bottom...`
Tim Waugh	75d0e8	`+ 0 setgray % Color`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % Center of page`
Tim Waugh	75d0e8	`+ pageHeight 72 mul % Top of page`
Tim Waugh	75d0e8	`+ pageWidth -7 mul add % - 2 lines`
Tim Waugh	75d0e8	`+ moveto % Position text`
Tim Waugh	75d0e8	`+ bigFont setfont % Font`
Tim Waugh	75d0e8	`+ ({mls-label}) CENTER % Show text centered`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % Center of page`
Tim Waugh	75d0e8	`+ pageHeight 6 mul % Bottom of page`
Tim Waugh	75d0e8	`+ moveto % Position text`
Tim Waugh	75d0e8	`+ bigFont setfont % Font`
Tim Waugh	75d0e8	`+ ({mls-label}) CENTER % Show text centered`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Job information box...`
Tim Waugh	75d0e8	`+ pageWidth 36 mul 9 add % x = pageWidth * 1/2 * 72 + 9`
Tim Waugh	75d0e8	`+ boxWidth 0.5 mul sub % x-= 1/2 box width`
Tim Waugh	75d0e8	`+ pageHeight 30 mul 9 sub % y = pageHeight * 1/2 * 72 - 9`
Tim Waugh	75d0e8	`+ boxWidth % w = box width`
Tim Waugh	75d0e8	`+ pageHeight 14 mul % h = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ 0.5 setgray rectfill % Draw a shadow`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ boxWidth 0.5 mul sub % x-= 1/2 box width`
Tim Waugh	75d0e8	`+ pageHeight 30 mul % y = pageHeight * 1/4 * 72`
Tim Waugh	75d0e8	`+ boxWidth % w = box width`
Tim Waugh	75d0e8	`+ pageHeight 14 mul % h = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ 4 copy 1 setgray rectfill % Clear the box to white`
Tim Waugh	75d0e8	`+ 0 setgray rectstroke % Draw a black box around it...`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Job information text...`
Tim Waugh	75d0e8	`+ mediumFont setfont % Medium sized font`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 5 mul add % y += 2 lines`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Job ID: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({printer-name}-{job-id}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 2 mul add % y += 1 line`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Title: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({job-name}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight -1 mul add % y -= 1 line`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Requesting User: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({job-originating-user-name}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ pageWidth 36 mul % x = pageWidth * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight 36 mul % y = pageHeight * 1/2 * 72`
Tim Waugh	75d0e8	`+ pageHeight -4 mul add % y -= 2 lines`
Tim Waugh	75d0e8	`+ 2 copy % Copy X & Y`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ (Billing Info: ) RIGHT`
Tim Waugh	75d0e8	`+ moveto`
Tim Waugh	75d0e8	`+ ({?job-billing}) show`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % Then the CUPS logo....`
Tim Waugh	75d0e8	`+ gsave`
Tim Waugh	75d0e8	`+ pageWidth 4 mul`
Tim Waugh	75d0e8	`+ pageWidth 6 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+ pageWidth 9 mul CUPSLOGO`
Tim Waugh	75d0e8	`+ grestore`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ % And the ESP logo....`
Tim Waugh	75d0e8	`+ gsave`
Tim Waugh	75d0e8	`+ pageWidth 59 mul`
Tim Waugh	75d0e8	`+ pageWidth 6 mul`
Tim Waugh	75d0e8	`+ translate`
Tim Waugh	75d0e8	`+ pageWidth 6 mul ESPLOGO`
Tim Waugh	75d0e8	`+ grestore`
Tim Waugh	75d0e8	`+% Show the page...`
Tim Waugh	75d0e8	`+grestore`
Tim Waugh	75d0e8	`+showpage`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+% End of "$Id: mls_template,v 1.1 2005/06/27 18:44:46 colmo Exp $".`
Tim Waugh	75d0e8	`+%`
Tim Waugh	75d0e8	`+%%EOF`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/Makedefs.in 2006-09-28 11:38:14.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/Makedefs.in 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	5dd986	`@@ -135,7 +135,7 @@`
Tim Waugh	5dd986	`@LDFLAGS@ @RELROFLAG@ @PIEFLAGS@ $(OPTIM)`
Tim Waugh	5dd986	`LINKCUPS = @LINKCUPS@ $(SSLLIBS)`
Tim Waugh	5dd986	`LINKCUPSIMAGE = @LINKCUPSIMAGE@`
Tim Waugh	5dd986	`-LIBS = $(LINKCUPS) $(COMMONLIBS)`
Tim Waugh	5dd986	`+LIBS = $(LINKCUPS) $(COMMONLIBS) @LIBAUDIT@ @LIBSELINUX@`
Tim Waugh	5dd986	`OPTIM = @OPTIM@`
Tim Waugh	5dd986	`OPTIONS =`
Tim Waugh	5dd986	`PAMLIBS = @PAMLIBS@`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/client.c 2006-09-19 16:44:07.000000000 -0400`
Tim Waugh	a06301	`+++ cups-1.2.4/scheduler/client.c 2006-10-16 15:30:02.000000000 -0400`
Tim Waugh	22cc21	`@@ -44,12 +44,17 @@`
Tim Waugh	5dd986	`* make_certificate() - Make a self-signed SSL/TLS certificate.`
Tim Waugh	5dd986	`* pipe_command() - Pipe the output of a command to the remote client.`
Tim Waugh	5dd986	`* write_file() - Send a file via HTTP.`
Tim Waugh	5dd986	`+ * client_pid_to_auid() - Get the audit login uid of the client.`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8
Tim Waugh	5dd986	`+/* Copyright (C) 2005 Trusted Computer Solutions, Inc. */`
Tim Waugh	75d0e8	`+/* (c) Copyright 2005-2006 Hewlett-Packard Development Company, L.P. */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`/*`
Tim Waugh	75d0e8	`* Include necessary headers...`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8
Tim Waugh	5dd986	`+#define _GNU_SOURCE`
Tim Waugh	5dd986	`#include <cups/http-private.h>`
Tim Waugh	5dd986	`#include "cupsd.h"`
Tim Waugh	75d0e8
Tim Waugh	22cc21	`@@ -65,6 +70,12 @@`
Tim Waugh	5dd986	`# include <gnutls/x509.h>`
Tim Waugh	5dd986	`#endif /* HAVE_GNUTLS */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+#include <selinux/selinux.h>`
Tim Waugh	22cc21	`+#include <selinux/context.h>`
Tim Waugh	5dd986	`+#include <fcntl.h>`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`+`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`/*`
Tim Waugh	5dd986	`* Local functions...`
Tim Waugh	ef70a0	`@@ -323,6 +334,57 @@`
Tim Waugh	ef70a0	`}`
Tim Waugh	ef70a0	`}`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ if (is_lspp_config())`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	5dd986	`+ struct ucred cr;`
Tim Waugh	5dd986	`+ unsigned int cl=sizeof(cr);`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`+ if (getsockopt(con->http.fd, SOL_SOCKET, SO_PEERCRED, &cr, &cl) == 0)`
Tim Waugh	5dd986	`+ {`
Tim Waugh	5dd986	`+ /*`
Tim Waugh	5dd986	`+ * client_pid_to_auid() can be racey`
Tim Waugh	5dd986	`+ * In this case the pid is based on a socket connected to the client`
Tim Waugh	5dd986	`+ */`
Tim Waugh	5dd986	`+ if ((con->auid = client_pid_to_auid(cr.pid)) == -1)`
Tim Waugh	5dd986	`+ {`
Tim Waugh	5dd986	`+ close(con->http.fd);`
Tim Waugh	ef70a0	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "cupsdAcceptClient: "`
Tim Waugh	ef70a0	`+ "unable to determine client auid for client pid=%d", cr.pid);`
Tim Waugh	c5c707	`+ free(con);`
Tim Waugh	c5c707	`+ return;`
Tim Waugh	5dd986	`+ }`
Tim Waugh	5dd986	`+ cupsdLogMessage(CUPSD_LOG_INFO, "cupsdAcceptClient: peer's pid=%d, uid=%d, gid=%d, auid=%d",`
Tim Waugh	5dd986	`+ cr.pid, cr.uid, cr.gid, con->auid);`
Tim Waugh	5dd986	`+ }`
Tim Waugh	5dd986	`+ else`
Tim Waugh	5dd986	`+ {`
Tim Waugh	5dd986	`+ close(con->http.fd);`
Tim Waugh	5dd986	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "cupsdAcceptClient: getsockopt() failed");`
Tim Waugh	c5c707	`+ free(con);`
Tim Waugh	c5c707	`+ return;`
Tim Waugh	5dd986	`+ }`
Tim Waugh	5dd986	`+`
Tim Waugh	75d0e8	`+ /*`
Tim Waugh	5dd986	`+ * get the context of the peer connection`
Tim Waugh	75d0e8	`+ */`
Tim Waugh	5dd986	`+ if (getpeercon(con->http.fd, &con->scon))`
Tim Waugh	5dd986	`+ {`
Tim Waugh	ef70a0	`+ close(con->http.fd);`
Tim Waugh	5dd986	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "cupsdAcceptClient: getpeercon() failed");`
Tim Waugh	ef70a0	`+ free(con);`
Tim Waugh	ef70a0	`+ return;`
Tim Waugh	5dd986	`+ }`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`+ cupsdLogMessage(CUPSD_LOG_INFO, "cupsdAcceptClient: client context=%s", con->scon);`
Tim Waugh	5dd986	`+ }`
Tim Waugh	5dd986	`+ else`
Tim Waugh	5dd986	`+ {`
Tim Waugh	a06301	`+ cupsdLogMessage(CUPSD_LOG_DEBUG, "cupsdAcceptClient: skipping getpeercon()");`
Tim Waugh	5dd986	`+ cupsdSetString(&con->scon, UNKNOWN_SL);`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`+`
Tim Waugh	ef70a0	`#ifdef AF_INET6`
Tim Waugh	ef70a0	`if (con->http.hostaddr->addr.sa_family == AF_INET6)`
Tim Waugh	ef70a0	`cupsdLogMessage(CUPSD_LOG_DEBUG, "cupsdAcceptClient: %d from %s:%d (IPv6)",`
Tim Waugh	ef70a0	`@@ -711,6 +773,13 @@`
Tim Waugh	22cc21	`mime_type_t type; / MIME type of file */`
Tim Waugh	22cc21	`cupsd_printer_t p; / Printer */`
Tim Waugh	22cc21	`static unsigned request_id = 0; /* Request ID for temp files */`
Tim Waugh	22cc21	`+#ifdef WITH_LSPP`
Tim Waugh	22cc21	`+ security_context_t spoolcon; /* context of the job file */`
Tim Waugh	22cc21	`+ context_t clicon; /* contex_t container for con->scon */`
Tim Waugh	22cc21	`+ context_t tmpcon; /* temp context to swap the level */`
Tim Waugh	ef70a0	`+ char clirange; / SELinux sensitivity range */`
Tim Waugh	ef70a0	`+ char cliclearance; / SELinux low end clearance */`
Tim Waugh	22cc21	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	22cc21
Tim Waugh	22cc21	`status = HTTP_CONTINUE;`
Tim Waugh	ef70a0	`@@ -1797,6 +1866,63 @@`
Tim Waugh	22cc21	`fchmod(con->file, 0640);`
Tim Waugh	22cc21	`fchown(con->file, RunUser, Group);`
Tim Waugh	22cc21	`fcntl(con->file, F_SETFD, fcntl(con->file, F_GETFD) \| FD_CLOEXEC);`
Tim Waugh	22cc21	`+#ifdef WITH_LSPP`
Tim Waugh	6bb98a	`+ if (strncmp(con->scon, UNKNOWN_SL, strlen(UNKNOWN_SL)) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	6bb98a	`+ if (getfilecon(con->filename, &spoolcon) == -1)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ cupsdSendError(con, HTTP_SERVER_ERROR);`
Tim Waugh	6bb98a	`+ return (cupsdCloseClient(con));`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	6bb98a	`+ clicon = context_new(con->scon);`
Tim Waugh	6bb98a	`+ tmpcon = context_new(spoolcon);`
Tim Waugh	22cc21	`+ freecon(spoolcon);`
Tim Waugh	c5c707	`+ if (!clicon \|\| !tmpcon)`
Tim Waugh	c5c707	`+ {`
Tim Waugh	c5c707	`+ cupsdSendError(con, HTTP_SERVER_ERROR);`
Tim Waugh	c5c707	`+ if (clicon)`
Tim Waugh	c5c707	`+ context_free(clicon);`
Tim Waugh	c5c707	`+ if (tmpcon)`
Tim Waugh	c5c707	`+ context_free(tmpcon);`
Tim Waugh	c5c707	`+ return (cupsdCloseClient(con));`
Tim Waugh	c5c707	`+ }`
Tim Waugh	ef70a0	`+ clirange = strdup(context_range_get(clicon));`
Tim Waugh	ef70a0	`+ if ((cliclearance = strtok(clirange, "-")) != NULL)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	ef70a0	`+ if (context_range_set(tmpcon, cliclearance) == -1)`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ cupsdSendError(con, HTTP_SERVER_ERROR);`
Tim Waugh	ef70a0	`+ free(clirange);`
Tim Waugh	ef70a0	`+ context_free(tmpcon);`
Tim Waugh	ef70a0	`+ context_free(clicon);`
Tim Waugh	ef70a0	`+ return (cupsdCloseClient(con));`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	ef70a0	`+ else`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ if (context_range_set(tmpcon, (context_range_get(clicon))) == -1)`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ cupsdSendError(con, HTTP_SERVER_ERROR);`
Tim Waugh	ef70a0	`+ free(clirange);`
Tim Waugh	ef70a0	`+ context_free(tmpcon);`
Tim Waugh	ef70a0	`+ context_free(clicon);`
Tim Waugh	ef70a0	`+ return (cupsdCloseClient(con));`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	ef70a0	`+ free(clirange);`
Tim Waugh	6bb98a	`+ if (setfilecon(con->filename, context_str(tmpcon)) == -1)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ cupsdSendError(con, HTTP_SERVER_ERROR);`
Tim Waugh	6bb98a	`+ context_free(tmpcon);`
Tim Waugh	6bb98a	`+ context_free(clicon);`
Tim Waugh	6bb98a	`+ return (cupsdCloseClient(con));`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_DEBUG2, "cupsdReadClient: %s set to %s",`
Tim Waugh	6bb98a	`+ con->filename, context_str(tmpcon));`
Tim Waugh	22cc21	`+ context_free(tmpcon);`
Tim Waugh	22cc21	`+ context_free(clicon);`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+#endif /* WITH_LSPP */`
Tim Waugh	22cc21	`}`
Tim Waugh	22cc21
Tim Waugh	22cc21	`if (con->http.state != HTTP_POST_SEND)`
Tim Waugh	ef70a0	`@@ -3810,6 +3936,50 @@`
Tim Waugh	5dd986	`#endif /* HAVE_SSL */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+/*`
Tim Waugh	5dd986	`+ * 'client_pid_to_auid()' - Using the client's pid, read /proc and determine the loginuid.`
Tim Waugh	5dd986	`+ */`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+uid_t client_pid_to_auid(pid_t clipid)`
Tim Waugh	5dd986	`+{`
Tim Waugh	5dd986	`+ uid_t uid;`
Tim Waugh	5dd986	`+ int len, in;`
Tim Waugh	5dd986	`+ char buf[16] = {0};`
Tim Waugh	5dd986	`+ char fname[32] = {0};`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+ /*`
Tim Waugh	5dd986	`+ * Hopefully this pid is still the one we are interested in.`
Tim Waugh	5dd986	`+ */`
Tim Waugh	5dd986	`+ snprintf(fname, 32, "/proc/%d/loginuid", clipid);`
Tim Waugh	5dd986	`+ in = open(fname, O_NOFOLLOW\|O_RDONLY);`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+ if (in < 0)`
Tim Waugh	5dd986	`+ return -1;`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+ errno = 0;`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+ do {`
Tim Waugh	5dd986	`+ len = read(in, buf, sizeof(buf));`
Tim Waugh	5dd986	`+ } while (len < 0 && errno == EINTR);`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+ close(in);`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`+ if (len < 0 \|\| len >= sizeof(buf))`
Tim Waugh	5dd986	`+ return -1;`
Tim Waugh	5dd986	`+`
Tim Waugh	ef70a0	`+ errno = 0;`
Tim Waugh	5dd986	`+ buf[len] = 0;`
Tim Waugh	5dd986	`+ uid = strtol(buf, 0, 10);`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`+ if (errno != 0)`
Tim Waugh	5dd986	`+ return -1;`
Tim Waugh	5dd986	`+ else`
Tim Waugh	5dd986	`+ return uid;`
Tim Waugh	5dd986	`+}`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* 'pipe_command()' - Pipe the output of a command to the remote client.`
Tim Waugh	5dd986	`*/`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/client.h 2006-09-11 10:21:23.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/scheduler/client.h 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	75d0e8	`@@ -22,6 +22,13 @@`
Tim Waugh	75d0e8	`* WWW: http://www.cups.org`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+/* Copyright (C) 2005 Trusted Computer Solutions, Inc. */`
Tim Waugh	75d0e8	`+/* (c) Copyright 2005-2006 Hewlett-Packard Development Company, L.P. */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+#include <selinux/selinux.h>`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`/*`
Tim Waugh	75d0e8	`* HTTP client structure...`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8	`@@ -55,6 +62,10 @@`
Tim Waugh	75d0e8	`http_addr_t clientaddr; /* Client address */`
Tim Waugh	75d0e8	`char servername[256];/* Server name for connection */`
Tim Waugh	75d0e8	`int serverport; /* Server port for connection */`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+ security_context_t scon; /* Security context of connection */`
Tim Waugh	75d0e8	`+ uid_t auid; /* Audit loginuid of the client */`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`};`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`#define HTTP(con) &((con)->http)`
Tim Waugh	22cc21	`@@ -119,6 +130,9 @@`
Tim Waugh	75d0e8	`extern void cupsdStopListening(void);`
Tim Waugh	75d0e8	`extern void cupsdUpdateCGI(void);`
Tim Waugh	75d0e8	`extern int cupsdWriteClient(cupsd_client_t *con);`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+extern uid_t client_pid_to_auid(pid_t clipid);`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`/*`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/conf.c 2006-09-28 11:38:08.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/scheduler/conf.c 2006-09-29 18:23:37.000000000 -0400`
Tim Waugh	5dd986	`@@ -35,6 +35,7 @@`
Tim Waugh	5dd986	`* read_configuration() - Read a configuration file.`
Tim Waugh	5dd986	`* read_location() - Read a <Location path> definition.`
Tim Waugh	5dd986	`* read_policy() - Read a <Policy name> definition.`
Tim Waugh	5dd986	`+ * is_lspp_config() - Is the system configured for LSPP`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`/*`
Tim Waugh	5dd986	`@@ -60,6 +61,9 @@`
Tim Waugh	5dd986	`# define INADDR_NONE 0xffffffff`
Tim Waugh	5dd986	`#endif /* !INADDR_NONE */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+# include <libaudit.h>`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`/*`
Tim Waugh	5dd986	`* Configuration variable structure...`
Tim Waugh	5dd986	`@@ -161,6 +165,9 @@`
Tim Waugh	5dd986	`{ "ServerKey", &ServerKey, CUPSD_VARTYPE_STRING },`
Tim Waugh	5dd986	`# endif /* HAVE_LIBSSL \|\| HAVE_GNUTLS */`
Tim Waugh	5dd986	`#endif /* HAVE_SSL */`
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ { "AuditLog", &AuditLog, CUPSD_VARTYPE_INTEGER },`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`#ifdef HAVE_LAUNCHD`
Tim Waugh	5dd986	`{ "LaunchdTimeout", &LaunchdTimeout, CUPSD_VARTYPE_INTEGER },`
Tim Waugh	5dd986	`{ "LaunchdConf", &LaunchdConf, CUPSD_VARTYPE_STRING },`
Tim Waugh	5dd986	`@@ -223,6 +230,9 @@`
Tim Waugh	5dd986	`old_requestroot; / Old RequestRoot */`
Tim Waugh	5dd986	`const char tmpdir; / TMPDIR environment variable */`
Tim Waugh	5dd986	`struct stat tmpinfo; /* Temporary directory info */`
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ char audit_message; / Audit message string */`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986
Tim Waugh	5dd986
Tim Waugh	5dd986	`/*`
Tim Waugh	22cc21	`@@ -470,6 +480,16 @@`
Tim Waugh	9ad376
Tim Waugh	9ad376	`RunUser = getuid();`
Tim Waugh	9ad376
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ /*`
Tim Waugh	5dd986	`+ * ClassifyOverride is set during read_configuration, if its on, report it now`
Tim Waugh	5dd986	`+ */`
Tim Waugh	9ad376	`+ if (ClassifyOverride && AuditLog != -1)`
Tim Waugh	5dd986	`+ audit_log_user_message(AuditLog, AUDIT_USYS_CONFIG,`
Tim Waugh	5dd986	`+ "[Config] ClassifyOverride=enabled Users can override print banners",`
Tim Waugh	5dd986	`+ ServerName, NULL, NULL, 1);`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`/*`
Tim Waugh	9ad376	`* See if the ServerName is an IP address...`
Tim Waugh	75d0e8	`*/`
Tim Waugh	22cc21	`@@ -777,11 +797,23 @@`
Tim Waugh	22cc21	`if (MaxActiveJobs > (MaxFDs / 3))`
Tim Waugh	22cc21	`MaxActiveJobs = MaxFDs / 3;`
Tim Waugh	22cc21
Tim Waugh	22cc21	`- if (Classification && !strcasecmp(Classification, "none"))`
Tim Waugh	22cc21	`+ if (Classification && strcasecmp(Classification, "none") == 0)`
Tim Waugh	5dd986	`cupsdClearString(&Classification);`
Tim Waugh	75d0e8
Tim Waugh	5dd986	`if (Classification)`
Tim Waugh	5dd986	`+ {`
Tim Waugh	5dd986	`cupsdLogMessage(CUPSD_LOG_INFO, "Security set to \"%s\"", Classification);`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ if (AuditLog != -1)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ audit_message = NULL;`
Tim Waugh	22cc21	`+ cupsdSetStringf(&audit_message, "[Config] Classification=%s", Classification);`
Tim Waugh	9ad376	`+ audit_log_user_message(AuditLog, AUDIT_LABEL_LEVEL_CHANGE, audit_message,`
Tim Waugh	9ad376	`+ ServerName, NULL, NULL, 1);`
Tim Waugh	9ad376	`+ free(audit_message);`
Tim Waugh	9ad376	`+ }`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`+ }`
Tim Waugh	75d0e8
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* Update the MaxClientsPerHost value, as needed...`
Tim Waugh	22cc21	`@@ -3295,6 +3327,18 @@`
Tim Waugh	5dd986	`return (0);`
Tim Waugh	5dd986	`}`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+int is_lspp_config()`
Tim Waugh	5dd986	`+{`
Tim Waugh	5dd986	`+ if (Classification != NULL)`
Tim Waugh	5dd986	`+ return ((strcasecmp(Classification, MLS_CONFIG) == 0)`
Tim Waugh	5dd986	`+ \|\| (strcasecmp(Classification, TE_CONFIG) == 0)`
Tim Waugh	5dd986	`+ \|\| (strcasecmp(Classification, SELINUX_CONFIG) == 0));`
Tim Waugh	5dd986	`+ else`
Tim Waugh	5dd986	`+ return 0;`
Tim Waugh	5dd986	`+}`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986
Tim Waugh	5dd986	`/*`
Tim Waugh	22cc21	`* End of "$Id: conf.c 5905 2006-08-29 20:48:59Z mike $".`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/conf.h 2006-09-28 11:38:08.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/scheduler/conf.h 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	22cc21	`@@ -191,6 +191,10 @@`
Tim Waugh	5dd986	`/* Server key file */`
Tim Waugh	5dd986	`# endif /* HAVE_LIBSSL \|\| HAVE_GNUTLS */`
Tim Waugh	5dd986	`#endif /* HAVE_SSL */`
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+VAR int AuditLog VALUE(-1);`
Tim Waugh	5dd986	`+ /* File descriptor for audit */`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986
Tim Waugh	5dd986	`#ifdef HAVE_LAUNCHD`
Tim Waugh	5dd986	`VAR int LaunchdTimeout VALUE(DEFAULT_TIMEOUT);`
Tim Waugh	22cc21	`@@ -213,6 +217,9 @@`
Tim Waugh	5dd986	`;`
Tim Waugh	5dd986	`extern int cupsdLogPage(cupsd_job_t job, const char page);`
Tim Waugh	75d0e8
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+extern int is_lspp_config(void);`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* End of "$Id: conf.h 5696 2006-06-26 18:34:20Z mike $".`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/ipp.c 2006-09-28 11:38:08.000000000 -0400`
Tim Waugh	a06301	`+++ cups-1.2.4/scheduler/ipp.c 2006-10-16 15:30:02.000000000 -0400`
Tim Waugh	75d0e8	`@@ -96,6 +96,9 @@`
Tim Waugh	75d0e8	`* validate_user() - Validate the user for the request.`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+/* Copyright (C) 2005 Trusted Computer Solutions, Inc. */`
Tim Waugh	75d0e8	`+/* (c) Copyright 2005-2006 Hewlett-Packard Development Company, L.P. */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`/*`
Tim Waugh	75d0e8	`* Include necessary headers...`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8	`@@ -106,6 +109,14 @@`
Tim Waugh	75d0e8	`# include <paper.h>`
Tim Waugh	75d0e8	`#endif /* HAVE_LIBPAPER */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+#include <libaudit.h>`
Tim Waugh	75d0e8	`+#include <selinux/selinux.h>`
Tim Waugh	75d0e8	`+#include <selinux/context.h>`
Tim Waugh	75d0e8	`+#include <selinux/avc.h>`
Tim Waugh	75d0e8	`+#include <selinux/flask.h>`
Tim Waugh	75d0e8	`+#include <selinux/av_permissions.h>`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`/*`
Tim Waugh	75d0e8	`* PPD default choice structure...`
Tim Waugh	ef70a0	`@@ -1173,6 +1184,20 @@`
Tim Waugh	75d0e8	`int kbytes; /* Size of print file */`
Tim Waugh	75d0e8	`int i; /* Looping var */`
Tim Waugh	75d0e8	`int lowerpagerange; /* Page range bound */`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+ char audit_message; / Audit message string */`
Tim Waugh	75d0e8	`+ char printerfile; / device file pointed to by the printer */`
Tim Waugh	9ad376	`+ char userheader = NULL; / User supplied job-sheets[0] */`
Tim Waugh	9ad376	`+ char userfooter = NULL; / User supplied job-sheets[1] */`
Tim Waugh	9ad376	`+ int override = 0; /* Was a banner overrode on a job */`
Tim Waugh	22cc21	`+ security_id_t clisid; /* SELinux SID for the client */`
Tim Waugh	22cc21	`+ security_id_t psid; /* SELinux SID for the printer */`
Tim Waugh	22cc21	`+ context_t printercon; /* Printer's context string */`
Tim Waugh	22cc21	`+ security_context_t devcon; /* Printer's SELinux context */`
Tim Waugh	22cc21	`+ struct avc_entry_ref avcref; /* Pointer to the access vector cache */`
Tim Waugh	22cc21	`+ security_class_t tclass; /* Object class for the SELinux check */`
Tim Waugh	22cc21	`+ access_vector_t avr; /* Access method being requested */`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`cupsdLogMessage(CUPSD_LOG_DEBUG2, "add_job(%p[%d], %s)", con,`
Tim Waugh	ef70a0	`@@ -1349,6 +1374,101 @@`
Tim Waugh	75d0e8	`return (NULL);`
Tim Waugh	75d0e8	`}`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+ if (is_lspp_config())`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	6bb98a	`+ if (!con->scon \|\| strncmp(con->scon, UNKNOWN_SL, strlen(UNKNOWN_SL)) == 0)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	75d0e8	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "add_job: missing classification for connection \'%s\'!", dest);`
Tim Waugh	75d0e8	`+ send_ipp_status(con, IPP_INTERNAL_ERROR, _("Missing required secuirty attributes."));`
Tim Waugh	75d0e8	`+ return (NULL);`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+ else`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	75d0e8	`+ /*`
Tim Waugh	75d0e8	`+ * duplicate the security context and auid of the connection into the job structure`
Tim Waugh	75d0e8	`+ */`
Tim Waugh	6bb98a	`+ job->scon = strdup(con->scon);`
Tim Waugh	6bb98a	`+ job->auid = con->auid;`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /*`
Tim Waugh	75d0e8	`+ * add the security context to the request so that on a restart the security`
Tim Waugh	75d0e8	`+ * attributes will be able to be restored`
Tim Waugh	75d0e8	`+ */`
Tim Waugh	75d0e8	`+ ippAddString(con->request, IPP_TAG_JOB, IPP_TAG_NAME, "security-context",`
Tim Waugh	75d0e8	`+ NULL, job->scon);`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ /*`
Tim Waugh	75d0e8	`+ * Perform an access check so that if the user gets feedback at enqueue time`
Tim Waugh	75d0e8	`+ */`
Tim Waugh	75d0e8	`+`
Tim Waugh	9ad376	`+ printerfile = strstr(printer->device_uri, "/dev/");`
Tim Waugh	22cc21	`+ if (printerfile == NULL && (strncmp(printer->device_uri, "file:/", 6) == 0))`
Tim Waugh	22cc21	`+ printerfile = strdup(printer->device_uri + strlen("file:/"));`
Tim Waugh	22cc21	`+`
Tim Waugh	9ad376	`+ if (printerfile != NULL)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	75d0e8	`+ cupsdLogMessage(CUPSD_LOG_DEBUG, "add_job: Attempting an access check on printer device %s",`
Tim Waugh	75d0e8	`+ printerfile);`
Tim Waugh	75d0e8	`+`
Tim Waugh	22cc21	`+ tclass = SECCLASS_FILE;`
Tim Waugh	a06301	`+ avr = CHR_FILE__WRITE;`
Tim Waugh	22cc21	`+ avc_init("cupsd_enqueue_", NULL, NULL, NULL, NULL);`
Tim Waugh	22cc21	`+ avc_entry_ref_init(&avcref);`
Tim Waugh	22cc21	`+ if (avc_context_to_sid(con->scon, &clisid) != 0)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	22cc21	`+ send_ipp_status(con, IPP_NOT_AUTHORIZED, _("Unable to get the SELinux sid of the client"));`
Tim Waugh	75d0e8	`+ return (NULL);`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	22cc21	`+ if (getfilecon(printerfile, &devcon) == -1)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ send_ipp_status(con, IPP_NOT_AUTHORIZED, _("Unable to get the SELinux context of the printer"));`
Tim Waugh	22cc21	`+ return (NULL);`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ printercon = context_new(devcon);`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_DEBUG, "add_job: printer context %s client context %s",`
Tim Waugh	22cc21	`+ context_str(printercon), con->scon);`
Tim Waugh	22cc21	`+ context_free(printercon);`
Tim Waugh	75d0e8	`+`
Tim Waugh	22cc21	`+ if (avc_context_to_sid(devcon, &psid) != 0)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	22cc21	`+ send_ipp_status(con, IPP_NOT_AUTHORIZED, _("Unable to get the SELinux sid of the printer"));`
Tim Waugh	22cc21	`+ freecon(devcon);`
Tim Waugh	22cc21	`+ return (NULL);`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ freecon(devcon);`
Tim Waugh	ef70a0	`+ if (avc_has_perm(clisid, psid, tclass, avr, &avcref, NULL) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ /*`
Tim Waugh	22cc21	`+ * The access check failed, so cancel the job and send an audit message`
Tim Waugh	22cc21	`+ */`
Tim Waugh	22cc21	`+ if (AuditLog != -1)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	22cc21	`+ audit_message = NULL;`
Tim Waugh	22cc21	`+ cupsdSetStringf(&audit_message, "job=%d auid=%u acct=%s obj=%s refused"`
Tim Waugh	22cc21	`+ " unable to access printer=%s", job->id, con->auid,`
Tim Waugh	22cc21	`+ con->username, con->scon, printer->name);`
Tim Waugh	22cc21	`+ audit_log_user_message(AuditLog, AUDIT_USER_LABELED_EXPORT, audit_message,`
Tim Waugh	22cc21	`+ ServerName, NULL, NULL, 0);`
Tim Waugh	22cc21	`+ free(audit_message);`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	22cc21	`+`
Tim Waugh	22cc21	`+ send_ipp_status(con, IPP_NOT_AUTHORIZED, _("SELinux prohibits access to the printer"));`
Tim Waugh	22cc21	`+ return (NULL);`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	6bb98a	`+ else`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ /*`
Tim Waugh	6bb98a	`+ * Fill in the security context of the job as unlabeled`
Tim Waugh	6bb98a	`+ */`
Tim Waugh	a06301	`+ cupsdLogMessage(CUPSD_LOG_DEBUG, "add_job: setting context of job to %s", UNKNOWN_SL);`
Tim Waugh	6bb98a	`+ cupsdSetString(&job->scon, UNKNOWN_SL);`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`job->dtype = dtype;`
Tim Waugh	75d0e8	`job->attrs = con->request;`
Tim Waugh	75d0e8	`con->request = NULL;`
Tim Waugh	ef70a0	`@@ -1544,6 +1664,29 @@`
Tim Waugh	9ad376	`attr->values[0].string.text = _cupsStrAlloc(printer->job_sheets[0]);`
Tim Waugh	9ad376	`attr->values[1].string.text = _cupsStrAlloc(printer->job_sheets[1]);`
Tim Waugh	9ad376	`}`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ else`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ /*`
Tim Waugh	9ad376	`+ * The option was present, so capture the user supplied strings`
Tim Waugh	9ad376	`+ */`
Tim Waugh	9ad376	`+ userheader = strdup(attr->values[0].string.text);`
Tim Waugh	9ad376	`+`
Tim Waugh	9ad376	`+ if (attr->num_values > 1)`
Tim Waugh	9ad376	`+ userfooter = strdup(attr->values[1].string.text);`
Tim Waugh	9ad376	`+`
Tim Waugh	f6c7a0	`+ if (Classification != NULL && (strcmp(userheader, Classification) == 0)`
Tim Waugh	d90f39	`+ && userfooter &&(strcmp(userfooter, Classification) == 0))`
Tim Waugh	9ad376	`+ {`
Tim Waugh	75d0e8	`+ /*`
Tim Waugh	9ad376	`+ * Since both values are Classification, the user is not trying to Override`
Tim Waugh	75d0e8	`+ */`
Tim Waugh	9ad376	`+ free(userheader);`
Tim Waugh	d90f39	`+ if (userfooter) free(userfooter);`
Tim Waugh	9ad376	`+ userheader = userfooter = NULL;`
Tim Waugh	9ad376	`+ }`
Tim Waugh	9ad376	`+ }`
Tim Waugh	9ad376	`+#endif /* WITH_LSPP */`
Tim Waugh	9ad376
Tim Waugh	9ad376	`job->job_sheets = attr;`
Tim Waugh	9ad376
Tim Waugh	ef70a0	`@@ -1574,6 +1717,9 @@`
Tim Waugh	9ad376	`"job-sheets=\"%s,none\", "`
Tim Waugh	9ad376	`"job-originating-user-name=\"%s\"",`
Tim Waugh	9ad376	`job->id, Classification, job->username);`
Tim Waugh	9ad376	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ override = 1;`
Tim Waugh	9ad376	`+#endif /* WITH_LSPP */`
Tim Waugh	9ad376	`}`
Tim Waugh	9ad376	`else if (attr->num_values == 2 &&`
Tim Waugh	9ad376	`strcmp(attr->values[0].string.text,`
Tim Waugh	ef70a0	`@@ -1592,6 +1738,9 @@`
Tim Waugh	9ad376	`"job-originating-user-name=\"%s\"",`
Tim Waugh	9ad376	`job->id, attr->values[0].string.text,`
Tim Waugh	9ad376	`attr->values[1].string.text, job->username);`
Tim Waugh	9ad376	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ override = 1;`
Tim Waugh	9ad376	`+#endif /* WITH_LSPP */`
Tim Waugh	9ad376	`}`
Tim Waugh	9ad376	`else if (strcmp(attr->values[0].string.text, Classification) &&`
Tim Waugh	9ad376	`strcmp(attr->values[0].string.text, "none") &&`
Tim Waugh	ef70a0	`@@ -1612,6 +1761,9 @@`
Tim Waugh	9ad376	`"job-originating-user-name=\"%s\"",`
Tim Waugh	9ad376	`job->id, attr->values[0].string.text,`
Tim Waugh	9ad376	`attr->values[1].string.text, job->username);`
Tim Waugh	9ad376	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ override = 1;`
Tim Waugh	9ad376	`+#endif /* WITH_LSPP */`
Tim Waugh	9ad376	`}`
Tim Waugh	9ad376	`}`
Tim Waugh	9ad376	`else if (strcmp(attr->values[0].string.text, Classification) &&`
Tim Waugh	ef70a0	`@@ -1652,7 +1804,50 @@`
Tim Waugh	9ad376	`"job-sheets=\"%s\", "`
Tim Waugh	9ad376	`"job-originating-user-name=\"%s\"",`
Tim Waugh	9ad376	`job->id, Classification, job->username);`
Tim Waugh	9ad376	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ override = 1;`
Tim Waugh	9ad376	`+#endif /* WITH_LSPP */`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	9ad376	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ if (is_lspp_config() && AuditLog != -1)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	75d0e8	`+ audit_message = NULL;`
Tim Waugh	9ad376	`+`
Tim Waugh	9ad376	`+ if (userheader \|\| userfooter)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ if (!override)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ /*`
Tim Waugh	9ad376	`+ * The user overrode the banner, so audit it`
Tim Waugh	9ad376	`+ */`
Tim Waugh	22cc21	`+ cupsdSetStringf(&audit_message, "job=%d user supplied job-sheets=%s,%s"`
Tim Waugh	22cc21	`+ " using banners=%s,%s", job->id, userheader,`
Tim Waugh	9ad376	`+ userfooter, attr->values[0].string.text,`
Tim Waugh	9ad376	`+ (attr->num_values > 1) ? attr->values[1].string.text : "(null)");`
Tim Waugh	9ad376	`+ audit_log_user_message(AuditLog, AUDIT_LABEL_OVERRIDE, audit_message,`
Tim Waugh	9ad376	`+ ServerName, NULL, NULL, 1);`
Tim Waugh	9ad376	`+ }`
Tim Waugh	9ad376	`+ else`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ /*`
Tim Waugh	9ad376	`+ * The user tried to override the banner, audit the failure`
Tim Waugh	9ad376	`+ */`
Tim Waugh	22cc21	`+ cupsdSetStringf(&audit_message, "job=%d user supplied job-sheets=%s,%s"`
Tim Waugh	22cc21	`+ " ignored banners=%s,%s", job->id, userheader,`
Tim Waugh	9ad376	`+ userfooter, attr->values[0].string.text,`
Tim Waugh	9ad376	`+ (attr->num_values > 1) ? attr->values[1].string.text : "(null)");`
Tim Waugh	9ad376	`+ audit_log_user_message(AuditLog, AUDIT_LABEL_OVERRIDE, audit_message,`
Tim Waugh	9ad376	`+ ServerName, NULL, NULL, 0);`
Tim Waugh	ef70a0	`}`
Tim Waugh	9ad376	`+ free(audit_message);`
Tim Waugh	c5c707	`+ }`
Tim Waugh	c5c707	`+ }`
Tim Waugh	c5c707	`+`
Tim Waugh	9ad376	`+ if (userheader)`
Tim Waugh	9ad376	`+ free(userheader);`
Tim Waugh	9ad376	`+ if (userfooter)`
Tim Waugh	9ad376	`+ free(userfooter);`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	c5c707	`}`
Tim Waugh	c5c707
Tim Waugh	9ad376	`/*`
Tim Waugh	ef70a0	`@@ -3504,6 +3699,15 @@`
Tim Waugh	75d0e8	`char attrname[255], /* Name of attribute */`
Tim Waugh	75d0e8	`s; / Pointer into name */`
Tim Waugh	75d0e8	`ipp_attribute_t attr; / Attribute */`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	ef70a0	`+ const char mls_label; / SL of print job */`
Tim Waugh	ef70a0	`+ char jobrange; / SELinux sensitivity range */`
Tim Waugh	ef70a0	`+ char jobclearance; / SELinux low end clearance */`
Tim Waugh	22cc21	`+ context_t jobcon; /* SELinux context of the job */`
Tim Waugh	22cc21	`+ context_t tmpcon; /* Temp context to set the level */`
Tim Waugh	22cc21	`+ security_context_t spoolcon; /* Context of the file in the spool */`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`cupsdLogMessage(CUPSD_LOG_DEBUG2, "copy_banner(%p[%d], %p[%d], %s)",`
Tim Waugh	ef70a0	`@@ -3537,6 +3741,77 @@`
Tim Waugh	22cc21
Tim Waugh	22cc21	`fchmod(cupsFileNumber(out), 0640);`
Tim Waugh	22cc21	`fchown(cupsFileNumber(out), RunUser, Group);`
Tim Waugh	22cc21	`+#ifdef WITH_LSPP`
Tim Waugh	6bb98a	`+ if (strncmp(con->scon, UNKNOWN_SL, strlen(UNKNOWN_SL)) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	6bb98a	`+ if (getfilecon(filename, &spoolcon) == -1)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	6bb98a	`+ "copy_banner: Unable to get the context of the banner file %s - %s",`
Tim Waugh	6bb98a	`+ filename, strerror(errno));`
Tim Waugh	6bb98a	`+ job->num_files --;`
Tim Waugh	6bb98a	`+ return (0);`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	6bb98a	`+ tmpcon = context_new(spoolcon);`
Tim Waugh	6bb98a	`+ jobcon = context_new(con->scon);`
Tim Waugh	6bb98a	`+ freecon(spoolcon);`
Tim Waugh	c5c707	`+ if (!tmpcon \|\| !jobcon)`
Tim Waugh	c5c707	`+ {`
Tim Waugh	c5c707	`+ if (tmpcon)`
Tim Waugh	c5c707	`+ context_free(tmpcon);`
Tim Waugh	c5c707	`+ if (jobcon)`
Tim Waugh	c5c707	`+ context_free(jobcon);`
Tim Waugh	c5c707	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	c5c707	`+ "copy_banner: Unable to get the SELinux contexts");`
Tim Waugh	c5c707	`+ job->num_files --;`
Tim Waugh	c5c707	`+ return (0);`
Tim Waugh	c5c707	`+ }`
Tim Waugh	ef70a0	`+ jobrange = strdup(context_range_get(jobcon));`
Tim Waugh	ef70a0	`+ if ((jobclearance = strtok(jobrange, "-")) != NULL)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	ef70a0	`+ if (context_range_set(tmpcon, jobclearance) == -1)`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	ef70a0	`+ "copy_banner: Unable to set the level of the context for file %s - %s",`
Tim Waugh	ef70a0	`+ filename, strerror(errno));`
Tim Waugh	ef70a0	`+ free(jobrange);`
Tim Waugh	ef70a0	`+ context_free(jobcon);`
Tim Waugh	ef70a0	`+ context_free(tmpcon);`
Tim Waugh	ef70a0	`+ job->num_files --;`
Tim Waugh	ef70a0	`+ return (0);`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	ef70a0	`+ else`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ if (context_range_set(tmpcon, (context_range_get(jobcon))) == -1)`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	ef70a0	`+ "copy_banner: Unable to set the level of the context for file %s - %s",`
Tim Waugh	ef70a0	`+ filename, strerror(errno));`
Tim Waugh	ef70a0	`+ free(jobrange);`
Tim Waugh	ef70a0	`+ context_free(jobcon);`
Tim Waugh	ef70a0	`+ context_free(tmpcon);`
Tim Waugh	ef70a0	`+ job->num_files --;`
Tim Waugh	ef70a0	`+ return (0);`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	ef70a0	`+ free(jobrange);`
Tim Waugh	6bb98a	`+ if (setfilecon(filename, context_str(tmpcon)) == -1)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	6bb98a	`+ "copy_banner: Unable to set the context of the banner file %s - %s",`
Tim Waugh	6bb98a	`+ filename, strerror(errno));`
Tim Waugh	6bb98a	`+ context_free(jobcon);`
Tim Waugh	6bb98a	`+ context_free(tmpcon);`
Tim Waugh	6bb98a	`+ job->num_files --;`
Tim Waugh	6bb98a	`+ return (0);`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_DEBUG2, "copy_banner: %s set to %s",`
Tim Waugh	6bb98a	`+ filename, context_str(tmpcon));`
Tim Waugh	22cc21	`+ context_free(jobcon);`
Tim Waugh	22cc21	`+ context_free(tmpcon);`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+#endif /* WITH_LSPP */`
Tim Waugh	22cc21
Tim Waugh	22cc21	`/*`
Tim Waugh	22cc21	`* Try the localized banner file under the subdirectory...`
Tim Waugh	ef70a0	`@@ -3631,6 +3906,24 @@`
Tim Waugh	75d0e8	`else`
Tim Waugh	75d0e8	`s = attrname;`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+ if (strcmp(s, "mls-label") == 0)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	6bb98a	`+ if (con->scon != NULL && strncmp(con->scon, UNKNOWN_SL, strlen(UNKNOWN_SL)) != 0)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	22cc21	`+ jobcon = context_new(con->scon);`
Tim Waugh	75d0e8	`+ if (strcasecmp(name, MLS_CONFIG) == 0)`
Tim Waugh	22cc21	`+ mls_label = context_range_get(jobcon);`
Tim Waugh	75d0e8	`+ else if (strcasecmp(name, TE_CONFIG) == 0)`
Tim Waugh	22cc21	`+ mls_label = context_type_get(jobcon);`
Tim Waugh	75d0e8	`+ else // default to using the whole context string`
Tim Waugh	22cc21	`+ mls_label = context_str(jobcon);`
Tim Waugh	75d0e8	`+ cupsFilePuts(out, mls_label);`
Tim Waugh	22cc21	`+ context_free(jobcon);`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+ continue;`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`if (!strcmp(s, "printer-name"))`
Tim Waugh	75d0e8	`{`
Tim Waugh	75d0e8	`cupsFilePuts(out, job->dest);`
Tim Waugh	ef70a0	`@@ -5352,6 +5645,17 @@`
Tim Waugh	75d0e8	`cupsd_printer_t printer; / Printer */`
Tim Waugh	75d0e8	`cups_array_t list; / Which job list... */`
Tim Waugh	75d0e8	`cups_array_t ra; / Requested attributes array */`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+ int selinuxcheck; /* perform the SELinux access check? */`
Tim Waugh	22cc21	`+ char filename[1024]; /* Filename of the spool file */`
Tim Waugh	75d0e8	`+ security_id_t clisid; /* SELinux SID of the client */`
Tim Waugh	75d0e8	`+ security_id_t jobsid; /* SELinux SID of the job */`
Tim Waugh	22cc21	`+ security_id_t filesid; /* SELinux SID of the spool file */`
Tim Waugh	75d0e8	`+ struct avc_entry_ref avcref; /* AVC entry cache pointer */`
Tim Waugh	75d0e8	`+ security_class_t tclass; /* SELinux security class */`
Tim Waugh	75d0e8	`+ access_vector_t avr; /* SELinux access being queried */`
Tim Waugh	22cc21	`+ security_context_t spoolfilecon; /* SELinux context of the spool file */`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`cupsdLogMessage(CUPSD_LOG_DEBUG2, "get_jobs(%p[%d], %s)", con, con->http.fd,`
Tim Waugh	ef70a0	`@@ -5469,6 +5773,45 @@`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`ra = create_requested_array(con->request);`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+ /*`
Tim Waugh	75d0e8	`+ * Determine outside the loop if we are concerned about SELinux`
Tim Waugh	75d0e8	`+ */`
Tim Waugh	75d0e8	`+ selinuxcheck = is_lspp_config();`
Tim Waugh	75d0e8	`+ if (selinuxcheck)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	75d0e8	`+ selinuxcheck = security_getenforce();`
Tim Waugh	75d0e8	`+ if (selinuxcheck == -1)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	75d0e8	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "get_jobs: unable to determine SELinux enforcement");`
Tim Waugh	75d0e8	`+ send_ipp_status(con, IPP_INTERNAL_ERROR, _("Internal SELinux error (getenforce)."));`
Tim Waugh	75d0e8	`+ return;`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	6bb98a	`+ if (strncmp(con->scon, UNKNOWN_SL, strlen(UNKNOWN_SL)) == 0)`
Tim Waugh	6bb98a	`+ selinuxcheck = 0;`
Tim Waugh	6bb98a	`+ else`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	6bb98a	`+ if (avc_init("cups", NULL, NULL, NULL, NULL) < 0)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "get_jobs: unable avc_init");`
Tim Waugh	6bb98a	`+ send_ipp_status(con, IPP_INTERNAL_ERROR, _("Internal SELinux error (avc_init)."));`
Tim Waugh	6bb98a	`+ return;`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	6bb98a	`+ if (avc_context_to_sid(con->scon, &clisid) != 0)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "get_jobs: unable to convert %s to SELinux sid", con->scon);`
Tim Waugh	6bb98a	`+ send_ipp_status(con, IPP_INTERNAL_ERROR, _("Internal SELinux error (avc_context_to_sid)."));`
Tim Waugh	6bb98a	`+ return;`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_DEBUG, "get_jobs: client context %s", con->scon);`
Tim Waugh	75d0e8	`+`
Tim Waugh	6bb98a	`+ avr = FILE__READ;`
Tim Waugh	6bb98a	`+ tclass = SECCLASS_FILE;`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`/*`
Tim Waugh	75d0e8	`* OK, build a list of jobs for this printer...`
Tim Waugh	75d0e8	`*/`
Tim Waugh	ef70a0	`@@ -5506,6 +5849,42 @@`
Tim Waugh	75d0e8	`if (count > 0)`
Tim Waugh	75d0e8	`ippAddSeparator(con->response);`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	6bb98a	`+ if (selinuxcheck && (strncmp(job->scon, UNKNOWN_SL, strlen(UNKNOWN_SL)) != 0))`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	75d0e8	`+ cupsdLogMessage(CUPSD_LOG_DEBUG, "get_jobs: job context %s", job->scon);`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`+ avc_context_to_sid(job->scon, &jobsid);`
Tim Waugh	75d0e8	`+ avc_entry_ref_init(&avcref);`
Tim Waugh	75d0e8	`+`
Tim Waugh	ef70a0	`+ if (avc_has_perm(clisid, jobsid, tclass, avr, &avcref, NULL) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_INFO, "get_jobs: SELinux denied access based on the client context");`
Tim Waugh	22cc21	`+ snprintf(filename, sizeof(filename), "%s/c%05d", RequestRoot, job->id);`
Tim Waugh	22cc21	`+ if (getfilecon(filename, &spoolfilecon) == -1)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "get_jobs: Unable to get spoolfile context");`
Tim Waugh	22cc21	`+ continue;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ if (avc_context_to_sid(spoolfilecon, &filesid) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "get_jobs: Unable to determine the SELinux sid for the spool file");`
Tim Waugh	22cc21	`+ freecon(spoolfilecon);`
Tim Waugh	22cc21	`+ continue;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ freecon(spoolfilecon);`
Tim Waugh	ef70a0	`+ if (avc_has_perm(clisid, filesid, tclass, avr, &avcref, NULL) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_INFO, "get_jobs: SELinux denied access to the spool file");`
Tim Waugh	22cc21	`+ continue;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_INFO, "get_jobs: SELinux allowed access to the spool file");`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ else`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_INFO, "get_jobs: SELinux allowed access based on the client");`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`count ++;`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`cupsdLogMessage(CUPSD_LOG_DEBUG2, "get_jobs: count = %d", count);`
Tim Waugh	ef70a0	`@@ -7944,12 +8323,22 @@`
Tim Waugh	75d0e8	`* See if we need to add the ending sheet...`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	75d0e8	`+ if (printer &&`
Tim Waugh	75d0e8	`+ ( is_lspp_config() \|\|`
Tim Waugh	75d0e8	`+ !(printer->type & (CUPS_PRINTER_REMOTE \| CUPS_PRINTER_IMPLICIT)) ) &&`
Tim Waugh	75d0e8	`+ (attr = ippFindAttribute(job->attrs, "job-sheets",`
Tim Waugh	75d0e8	`+ IPP_TAG_ZERO)) != NULL &&`
Tim Waugh	75d0e8	`+ attr->num_values > 1)`
Tim Waugh	75d0e8	`+ {`
Tim Waugh	75d0e8	`+#else /* !WITH_LSPP */`
Tim Waugh	75d0e8	`if (printer &&`
Tim Waugh	75d0e8	`!(printer->type & (CUPS_PRINTER_REMOTE \| CUPS_PRINTER_IMPLICIT)) &&`
Tim Waugh	75d0e8	`(attr = ippFindAttribute(job->attrs, "job-sheets",`
Tim Waugh	75d0e8	`IPP_TAG_ZERO)) != NULL &&`
Tim Waugh	75d0e8	`attr->num_values > 1)`
Tim Waugh	75d0e8	`{`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`/*`
Tim Waugh	75d0e8	`* Yes...`
Tim Waugh	75d0e8	`*/`
Tim Waugh	ef70a0	`@@ -9201,6 +9590,16 @@`
Tim Waugh	22cc21	`int userlen) /* I - Length of username */`
Tim Waugh	22cc21	`{`
Tim Waugh	22cc21	`cupsd_printer_t printer; / Printer for job */`
Tim Waugh	22cc21	`+#ifdef WITH_LSPP`
Tim Waugh	22cc21	`+ char filename[1024]; /* Job filename */`
Tim Waugh	22cc21	`+ struct avc_entry_ref avcref; /* Pointer to the access vector cache */`
Tim Waugh	22cc21	`+ security_class_t tclass; /* Object class for the SELinux check */`
Tim Waugh	22cc21	`+ access_vector_t avr; /* Access method being requested */`
Tim Waugh	22cc21	`+ security_id_t jobsid; /* SELinux sid for the job */`
Tim Waugh	22cc21	`+ security_id_t consid; /* SELinux sid for the client */`
Tim Waugh	22cc21	`+ security_id_t filesid; /* SELinux sid for the spool file */`
Tim Waugh	22cc21	`+ security_context_t spoolfilecon; /* SELinux context of the spool file */`
Tim Waugh	22cc21	`+#endif /* WITH_LSPP */`
Tim Waugh	22cc21
Tim Waugh	22cc21
Tim Waugh	22cc21	`cupsdLogMessage(CUPSD_LOG_DEBUG2,`
Tim Waugh	ef70a0	`@@ -9222,6 +9621,59 @@`
Tim Waugh	22cc21
Tim Waugh	22cc21	`strlcpy(username, get_username(con), userlen);`
Tim Waugh	22cc21
Tim Waugh	22cc21	`+#ifdef WITH_LSPP`
Tim Waugh	22cc21	`+ if (is_lspp_config())`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ if (!con->scon \|\| !job->scon)`
Tim Waugh	22cc21	`+ return 0;`
Tim Waugh	22cc21	`+`
Tim Waugh	22cc21	`+ tclass = SECCLASS_FILE;`
Tim Waugh	22cc21	`+ avr = FILE__READ;`
Tim Waugh	22cc21	`+ avc_init("cupsd_validate_user_", NULL, NULL, NULL, NULL);`
Tim Waugh	22cc21	`+ avc_entry_ref_init(&avcref);`
Tim Waugh	22cc21	`+ if (avc_context_to_sid(job->scon, &jobsid) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "validate_user: Unable to determine the SELinux sid for the job");`
Tim Waugh	22cc21	`+ return 0;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ if (avc_context_to_sid(con->scon, &consid) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "validate_user: Unable to determine the SELinux sid for the client");`
Tim Waugh	22cc21	`+ return 0;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+`
Tim Waugh	ef70a0	`+ if (avc_has_perm(consid, jobsid, tclass, avr, &avcref, NULL) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_INFO, "validate_user: SELinux denied access for the user");`
Tim Waugh	22cc21	`+ /*`
Tim Waugh	22cc21	`+ * The access check failed, check access on the file`
Tim Waugh	22cc21	`+ */`
Tim Waugh	22cc21	`+ snprintf(filename, sizeof(filename), "%s/c%05d", RequestRoot, job->id);`
Tim Waugh	22cc21	`+ if (getfilecon(filename, &spoolfilecon) == -1)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "validate_user: Unable to get spoolfile context");`
Tim Waugh	22cc21	`+ return 0;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ if (avc_context_to_sid(spoolfilecon, &filesid) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "validate_user: Unable to determine the SELinux sid for the spool file");`
Tim Waugh	22cc21	`+ freecon(spoolfilecon);`
Tim Waugh	22cc21	`+ return 0;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ freecon(spoolfilecon);`
Tim Waugh	ef70a0	`+ if (avc_has_perm(consid, filesid, tclass, avr, &avcref, NULL) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_INFO, "validate_user: SELinux denied access on the spool file");`
Tim Waugh	22cc21	`+ return 0;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ else`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_INFO, "validate_user: SELinux allowed access on the spool file");`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ else`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_INFO, "validate_user: SELinux allowed access based on the client context");`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+#endif /* WITH_LSPP */`
Tim Waugh	22cc21	`+`
Tim Waugh	22cc21	`/*`
Tim Waugh	22cc21	`* Check the username against the owner...`
Tim Waugh	22cc21	`*/`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/job.c 2006-09-28 11:38:08.000000000 -0400`
Tim Waugh	a06301	`+++ cups-1.2.4/scheduler/job.c 2006-10-16 15:30:02.000000000 -0400`
Tim Waugh	5dd986	`@@ -68,6 +68,9 @@`
Tim Waugh	5dd986	`* unload_job() - Unload a job from memory.`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8
Tim Waugh	5dd986	`+/* Copyright (C) 2005 Trusted Computer Solutions, Inc. */`
Tim Waugh	5dd986	`+/* (c) Copyright 2005-2006 Hewlett-Packard Development Company, L.P. */`
Tim Waugh	5dd986	`+`
Tim Waugh	75d0e8	`/*`
Tim Waugh	5dd986	`* Include necessary headers...`
Tim Waugh	5dd986	`*/`
Tim Waugh	22cc21	`@@ -77,6 +80,14 @@`
Tim Waugh	5dd986	`#include <cups/backend.h>`
Tim Waugh	5dd986	`#include <cups/dir.h>`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	22cc21	`+#include <libaudit.h>`
Tim Waugh	5dd986	`+#include <selinux/selinux.h>`
Tim Waugh	5dd986	`+#include <selinux/context.h>`
Tim Waugh	22cc21	`+#include <selinux/avc.h>`
Tim Waugh	22cc21	`+#include <selinux/flask.h>`
Tim Waugh	22cc21	`+#include <selinux/av_permissions.h>`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`/*`
Tim Waugh	5dd986	`* Local globals...`
Tim Waugh	22cc21	`@@ -1032,6 +1043,23 @@`
Tim Waugh	5dd986	`cupsdSetString(&job->dest, dest);`
Tim Waugh	75d0e8	`}`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ if ((attr = ippFindAttribute(job->attrs, "security-context", IPP_TAG_NAME)) != NULL)`
Tim Waugh	5dd986	`+ cupsdSetString(&job->scon, attr->values[0].string.text);`
Tim Waugh	5dd986	`+ else if (is_lspp_config())`
Tim Waugh	5dd986	`+ {`
Tim Waugh	5dd986	`+ /*`
Tim Waugh	5dd986	`+ * There was no security context so delete the job`
Tim Waugh	5dd986	`+ */`
Tim Waugh	5dd986	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "LoadAllJobs: Missing or bad security-context attribute in control file \"%s\"!",`
Tim Waugh	5dd986	`+ jobfile);`
Tim Waugh	5dd986	`+ ippDelete(job->attrs);`
Tim Waugh	5dd986	`+ job->attrs = NULL;`
Tim Waugh	5dd986	`+ unlink(jobfile);`
Tim Waugh	5dd986	`+ return;`
Tim Waugh	5dd986	`+ }`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8	`+`
Tim Waugh	5dd986	`job->sheets = ippFindAttribute(job->attrs, "job-media-sheets-completed",`
Tim Waugh	5dd986	`IPP_TAG_INTEGER);`
Tim Waugh	5dd986	`job->job_sheets = ippFindAttribute(job->attrs, "job-sheets", IPP_TAG_NAME);`
Tim Waugh	ef70a0	`@@ -1341,6 +1369,13 @@`
Tim Waugh	22cc21	`{`
Tim Waugh	22cc21	`char filename[1024]; /* Job control filename */`
Tim Waugh	22cc21	`cups_file_t fp; / Job file */`
Tim Waugh	22cc21	`+#ifdef WITH_LSPP`
Tim Waugh	22cc21	`+ security_context_t spoolcon; /* context of the job control file */`
Tim Waugh	22cc21	`+ context_t jobcon; /* contex_t container for job->scon */`
Tim Waugh	ef70a0	`+ context_t tmpcon; /* Temp context to swap the level */`
Tim Waugh	ef70a0	`+ char jobclearance; / SELinux low end clearance */`
Tim Waugh	ef70a0	`+ char jobrange; / SELinux sensitivity range */`
Tim Waugh	22cc21	`+#endif /* WITH_LSPP */`
Tim Waugh	22cc21
Tim Waugh	22cc21
Tim Waugh	22cc21	`cupsdLogMessage(CUPSD_LOG_DEBUG2, "cupsdSaveJob(job=%p(%d)): job->attrs=%p",`
Tim Waugh	ef70a0	`@@ -1359,6 +1394,72 @@`
Tim Waugh	22cc21	`fchmod(cupsFileNumber(fp), 0600);`
Tim Waugh	22cc21	`fchown(cupsFileNumber(fp), RunUser, Group);`
Tim Waugh	22cc21
Tim Waugh	22cc21	`+#ifdef WITH_LSPP`
Tim Waugh	29a565	`+ if (job->scon && strncmp(job->scon, UNKNOWN_SL, strlen(UNKNOWN_SL)) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	6bb98a	`+ if (getfilecon(filename, &spoolcon) == -1)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	6bb98a	`+ "Unable to get context of job control file \"%s\" - %s.",`
Tim Waugh	6bb98a	`+ filename, strerror(errno));`
Tim Waugh	6bb98a	`+ return;`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	6bb98a	`+ jobcon = context_new(job->scon);`
Tim Waugh	6bb98a	`+ tmpcon = context_new(spoolcon);`
Tim Waugh	6bb98a	`+ freecon(spoolcon);`
Tim Waugh	c5c707	`+ if (!jobcon \|\| !tmpcon)`
Tim Waugh	c5c707	`+ {`
Tim Waugh	c5c707	`+ if (jobcon)`
Tim Waugh	c5c707	`+ context_free(jobcon);`
Tim Waugh	c5c707	`+ if (tmpcon)`
Tim Waugh	c5c707	`+ context_free(tmpcon);`
Tim Waugh	c5c707	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "Unable to get SELinux contexts");`
Tim Waugh	c5c707	`+ return;`
Tim Waugh	c5c707	`+ }`
Tim Waugh	ef70a0	`+ jobrange = strdup(context_range_get(jobcon));`
Tim Waugh	ef70a0	`+ if ((jobclearance = strtok(jobrange, "-")) != NULL)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	ef70a0	`+ if (context_range_set(tmpcon, jobclearance) == -1)`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	ef70a0	`+ "Unable to set the range for job control file \"%s\" - %s.",`
Tim Waugh	ef70a0	`+ filename, strerror(errno));`
Tim Waugh	ef70a0	`+ free(jobrange);`
Tim Waugh	ef70a0	`+ context_free(tmpcon);`
Tim Waugh	ef70a0	`+ context_free(jobcon);`
Tim Waugh	ef70a0	`+ return;`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	ef70a0	`+ else`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ if (context_range_set(tmpcon, (context_range_get(jobcon))) == -1)`
Tim Waugh	ef70a0	`+ {`
Tim Waugh	ef70a0	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	ef70a0	`+ "Unable to set the range for job control file \"%s\" - %s.",`
Tim Waugh	ef70a0	`+ filename, strerror(errno));`
Tim Waugh	ef70a0	`+ free(jobrange);`
Tim Waugh	ef70a0	`+ context_free(tmpcon);`
Tim Waugh	ef70a0	`+ context_free(jobcon);`
Tim Waugh	ef70a0	`+ return;`
Tim Waugh	ef70a0	`+ }`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	ef70a0	`+ free(jobrange);`
Tim Waugh	6bb98a	`+ if (setfilecon(filename, context_str(tmpcon)) == -1)`
Tim Waugh	6bb98a	`+ {`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	6bb98a	`+ "Unable to set context of job control file \"%s\" - %s.",`
Tim Waugh	6bb98a	`+ filename, strerror(errno));`
Tim Waugh	6bb98a	`+ context_free(tmpcon);`
Tim Waugh	6bb98a	`+ context_free(jobcon);`
Tim Waugh	6bb98a	`+ return;`
Tim Waugh	6bb98a	`+ }`
Tim Waugh	6bb98a	`+ cupsdLogMessage(CUPSD_LOG_DEBUG2, "cupsdSaveJob(job=%p): new spool file context=%s",`
Tim Waugh	6bb98a	`+ job, context_str(tmpcon));`
Tim Waugh	22cc21	`+ context_free(tmpcon);`
Tim Waugh	22cc21	`+ context_free(jobcon);`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+#endif /* WITH_LSPP */`
Tim Waugh	22cc21	`+`
Tim Waugh	22cc21	`job->attrs->state = IPP_IDLE;`
Tim Waugh	22cc21
Tim Waugh	22cc21	`if (ippWriteIO(fp, (ipp_iocb_t)cupsFileWrite, 1, NULL,`
Tim Waugh	ef70a0	`@@ -2487,6 +2588,20 @@`
Tim Waugh	22cc21	`/* RIP_MAX_CACHE env variable */`
Tim Waugh	5dd986	`static char options = NULL;/ Full list of options */`
Tim Waugh	5dd986	`static int optlength = 0; /* Length of option buffer */`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ const char mls_label = NULL; / SL to put in classification env var */`
Tim Waugh	9ad376	`+ char label_template = NULL; / SL to put in classification env var */`
Tim Waugh	5dd986	`+ char audit_message = NULL; / Audit message string */`
Tim Waugh	5dd986	`+ char printerfile = NULL; / Device file pointed to by the printer */`
Tim Waugh	22cc21	`+ context_t jobcon; /* SELinux context of the job */`
Tim Waugh	22cc21	`+ security_id_t clisid; /* SELinux SID for the client */`
Tim Waugh	22cc21	`+ security_id_t psid; /* SELinux SID for the printer */`
Tim Waugh	22cc21	`+ context_t printercon; /* Printer's context string */`
Tim Waugh	22cc21	`+ security_context_t devcon; /* Printer's SELinux context */`
Tim Waugh	22cc21	`+ struct avc_entry_ref avcref; /* Pointer to the access vector cache */`
Tim Waugh	22cc21	`+ security_class_t tclass; /* Object class for the SELinux check */`
Tim Waugh	22cc21	`+ access_vector_t avr; /* Access method being requested */`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8
Tim Waugh	5dd986	`cupsdLogMessage(CUPSD_LOG_DEBUG2, "start_job: id = %d, file = %d/%d",`
Tim Waugh	ef70a0	`@@ -2740,6 +2855,77 @@`
Tim Waugh	75d0e8
Tim Waugh	5dd986	`cupsdLogMessage(CUPSD_LOG_DEBUG, "banner_page = %d", banner_page);`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ if (is_lspp_config())`
Tim Waugh	5dd986	`+ {`
Tim Waugh	5dd986	`+ /*`
Tim Waugh	5dd986	`+ * Perform an access check before printing, but only if the printer starts with /dev/`
Tim Waugh	5dd986	`+ */`
Tim Waugh	9ad376	`+ printerfile = strstr(printer->device_uri, "/dev/");`
Tim Waugh	22cc21	`+ if (printerfile == NULL && (strncmp(printer->device_uri, "file:/", 6) == 0))`
Tim Waugh	22cc21	`+ printerfile = strdup(printer->device_uri + strlen("file:/"));`
Tim Waugh	75d0e8	`+`
Tim Waugh	9ad376	`+ if (printerfile != NULL)`
Tim Waugh	5dd986	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_DEBUG,`
Tim Waugh	22cc21	`+ "StartJob: Attempting to check access on printer device %s", printerfile);`
Tim Waugh	22cc21	`+ tclass = SECCLASS_FILE;`
Tim Waugh	a06301	`+ avr = CHR_FILE__WRITE;`
Tim Waugh	22cc21	`+ avc_init("cupsd_dequeue_", NULL, NULL, NULL, NULL);`
Tim Waugh	22cc21	`+ avc_entry_ref_init(&avcref);`
Tim Waugh	22cc21	`+ if (avc_context_to_sid(job->scon, &clisid) != 0)`
Tim Waugh	5dd986	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	22cc21	`+ "StartJob: Unable to determine the SELinux sid for the job");`
Tim Waugh	bd257f	`+ cupsdCancelJob(job, 0, IPP_JOB_ABORTED);`
Tim Waugh	22cc21	`+ return ;`
Tim Waugh	5dd986	`+ }`
Tim Waugh	22cc21	`+ if (getfilecon(printerfile, &devcon) == -1)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "StartJob: Unable to get the SELinux context of %s",`
Tim Waugh	22cc21	`+ printerfile);`
Tim Waugh	22cc21	`+ cupsdCancelJob(job, 0, IPP_JOB_ABORTED);`
Tim Waugh	22cc21	`+ return ;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ printercon = context_new(devcon);`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_DEBUG, "StartJob: printer context %s client context %s",`
Tim Waugh	22cc21	`+ context_str(printercon), job->scon);`
Tim Waugh	22cc21	`+ context_free(printercon);`
Tim Waugh	75d0e8	`+`
Tim Waugh	22cc21	`+ if (avc_context_to_sid(devcon, &psid) != 0)`
Tim Waugh	22cc21	`+ {`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR,`
Tim Waugh	22cc21	`+ "StartJob: Unable to determine the SELinux sid for the printer");`
Tim Waugh	22cc21	`+ freecon(devcon);`
Tim Waugh	22cc21	`+ cupsdCancelJob(job, 0, IPP_JOB_ABORTED);`
Tim Waugh	22cc21	`+ return ;`
Tim Waugh	22cc21	`+ }`
Tim Waugh	22cc21	`+ freecon(devcon);`
Tim Waugh	75d0e8	`+`
Tim Waugh	ef70a0	`+ if (avc_has_perm(clisid, psid, tclass, avr, &avcref, NULL) != 0)`
Tim Waugh	5dd986	`+ {`
Tim Waugh	22cc21	`+ /*`
Tim Waugh	22cc21	`+ * The access check failed, so cancel the job and send an audit message`
Tim Waugh	22cc21	`+ */`
Tim Waugh	22cc21	`+ if (AuditLog != -1)`
Tim Waugh	5dd986	`+ {`
Tim Waugh	22cc21	`+ audit_message = NULL;`
Tim Waugh	22cc21	`+ cupsdSetStringf(&audit_message, "job=%d auid=%u acct=%s obj=%s canceled"`
Tim Waugh	22cc21	`+ " unable to access printer=%s", job->id,`
Tim Waugh	22cc21	`+ job->auid, (job->username)?job->username:"?", job->scon, printer->name);`
Tim Waugh	22cc21	`+ audit_log_user_message(AuditLog, AUDIT_USER_LABELED_EXPORT, audit_message,`
Tim Waugh	22cc21	`+ ServerName, NULL, NULL, 0);`
Tim Waugh	22cc21	`+ free(audit_message);`
Tim Waugh	5dd986	`+ }`
Tim Waugh	22cc21	`+`
Tim Waugh	22cc21	`+ cupsdCancelJob(job, 0, IPP_JOB_ABORTED);`
Tim Waugh	22cc21	`+`
Tim Waugh	22cc21	`+ return ;`
Tim Waugh	5dd986	`+ }`
Tim Waugh	5dd986	`+ }`
Tim Waugh	75d0e8	`+ }`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* Building the options string is harder than it needs to be, but`
Tim Waugh	5dd986	`* for the moment we need to pass strings for command-line args and`
Tim Waugh	ef70a0	`@@ -3069,7 +3255,66 @@`
Tim Waugh	9ad376	`snprintf(classification, sizeof(classification), "CLASSIFICATION=%s",`
Tim Waugh	9ad376	`attr->values[0].string.text);`
Tim Waugh	5dd986
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ if (is_lspp_config())`
Tim Waugh	5dd986	`+ {`
Tim Waugh	c5c707	`+ if (!job->scon \|\| strncmp(job->scon, UNKNOWN_SL, strlen(UNKNOWN_SL)) == 0)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ if (AuditLog != -1)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ audit_message = NULL;`
Tim Waugh	9ad376	`+ cupsdSetStringf(&audit_message, "job=%d auid=%u acct=%s printer=%s title=%s",`
Tim Waugh	9ad376	`+ job->id, job->auid, job->username, printer->name, title);`
Tim Waugh	9ad376	`+ audit_log_user_message(AuditLog, AUDIT_USER_UNLABELED_EXPORT, audit_message,`
Tim Waugh	9ad376	`+ ServerName, NULL, NULL, 1);`
Tim Waugh	9ad376	`+ free(audit_message);`
Tim Waugh	9ad376	`+ }`
Tim Waugh	9ad376	`+ }`
Tim Waugh	9ad376	`+ else`
Tim Waugh	9ad376	`+ {`
Tim Waugh	22cc21	`+ jobcon = context_new(job->scon);`
Tim Waugh	9ad376	`+`
Tim Waugh	9ad376	`+ if ((attr = ippFindAttribute(job->attrs, "job-sheets", IPP_TAG_NAME)) == NULL)`
Tim Waugh	9ad376	`+ label_template = strdup(Classification);`
Tim Waugh	9ad376	`+ else if (attr->num_values > 1 &&`
Tim Waugh	9ad376	`+ strcmp(attr->values[1].string.text, "none") != 0)`
Tim Waugh	9ad376	`+ label_template = strdup(attr->values[1].string.text);`
Tim Waugh	9ad376	`+ else`
Tim Waugh	9ad376	`+ label_template = strdup(attr->values[0].string.text);`
Tim Waugh	9ad376	`+`
Tim Waugh	9ad376	`+ if (strcasecmp(label_template, MLS_CONFIG) == 0)`
Tim Waugh	22cc21	`+ mls_label = context_range_get(jobcon);`
Tim Waugh	9ad376	`+ else if (strcasecmp(label_template, TE_CONFIG) == 0)`
Tim Waugh	22cc21	`+ mls_label = context_type_get(jobcon);`
Tim Waugh	9ad376	`+ else if (strcasecmp(label_template, SELINUX_CONFIG) == 0)`
Tim Waugh	22cc21	`+ mls_label = context_str(jobcon);`
Tim Waugh	22cc21	`+ else`
Tim Waugh	9ad376	`+ mls_label = label_template;`
Tim Waugh	9ad376	`+`
Tim Waugh	22cc21	`+ if (mls_label)`
Tim Waugh	22cc21	`+ snprintf(classification, sizeof(classification), "CLASSIFICATION=%s", mls_label);`
Tim Waugh	22cc21	`+ else`
Tim Waugh	22cc21	`+ bzero(classification, sizeof(classification));`
Tim Waugh	9ad376	`+`
Tim Waugh	9ad376	`+ if (AuditLog != -1)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ audit_message = NULL;`
Tim Waugh	9ad376	`+ cupsdSetStringf(&audit_message, "job=%d auid=%u acct=%s printer=%s title=%s"`
Tim Waugh	9ad376	`+ " obj=%s label=%s", job->id, job->auid, job->username,`
Tim Waugh	22cc21	`+ printer->name, title, job->scon, mls_label?mls_label:"none");`
Tim Waugh	9ad376	`+ audit_log_user_message(AuditLog, AUDIT_USER_LABELED_EXPORT, audit_message,`
Tim Waugh	9ad376	`+ ServerName, NULL, NULL, 1);`
Tim Waugh	9ad376	`+ free(audit_message);`
Tim Waugh	9ad376	`+ }`
Tim Waugh	22cc21	`+ context_free(jobcon);`
Tim Waugh	9ad376	`+ free(label_template);`
Tim Waugh	9ad376	`+ }`
Tim Waugh	5dd986	`+ }`
Tim Waugh	22cc21	`+ if (classification)`
Tim Waugh	22cc21	`+ envp[envc ++] = classification;`
Tim Waugh	22cc21	`+#else /* !WITH_LSPP */`
Tim Waugh	9ad376	`envp[envc ++] = classification;`
Tim Waugh	22cc21	`+#endif /* WITH_LSPP */`
Tim Waugh	9ad376	`}`
Tim Waugh	9ad376
Tim Waugh	22cc21	`if (job->dtype & (CUPS_PRINTER_CLASS \| CUPS_PRINTER_IMPLICIT))`
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/job.h 2006-09-19 16:11:08.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/scheduler/job.h 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	5dd986	`@@ -22,6 +22,13 @@`
Tim Waugh	5dd986	`* WWW: http://www.cups.org`
Tim Waugh	5dd986	`*/`
Tim Waugh	5dd986
Tim Waugh	5dd986	`+/* Copyright (C) 2005 Trusted Computer Solutions, Inc. */`
Tim Waugh	5dd986	`+/* (c) Copyright 2005-2006 Hewlett-Packard Development Company, L.P. */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+#include <selinux/selinux.h>`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* Job request structure...`
Tim Waugh	5dd986	`*/`
Tim Waugh	5dd986	`@@ -55,6 +62,10 @@`
Tim Waugh	5dd986	`int status; /* Status code from filters */`
Tim Waugh	5dd986	`cupsd_printer_t printer; / Printer this job is assigned to */`
Tim Waugh	5dd986	`int tries; /* Number of tries for this job */`
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ security_context_t scon; /* Security context of job */`
Tim Waugh	5dd986	`+ uid_t auid; /* Audit loginuid for this job */`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`} cupsd_job_t;`
Tim Waugh	5dd986
Tim Waugh	5dd986
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/main.c 2006-09-28 11:38:08.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/scheduler/main.c 2006-09-28 16:31:29.000000000 -0400`
Tim Waugh	5dd986	`@@ -47,6 +47,8 @@`
Tim Waugh	5dd986	`* usage() - Show scheduler usage.`
Tim Waugh	5dd986	`*/`
Tim Waugh	5dd986
Tim Waugh	5dd986	`+/* (c) Copyright 2005-2006 Hewlett-Packard Development Company, L.P. */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* Include necessary headers...`
Tim Waugh	5dd986	`*/`
Tim Waugh	5dd986	`@@ -69,6 +71,9 @@`
Tim Waugh	5dd986	`# include <notify.h>`
Tim Waugh	5dd986	`#endif /* HAVE_NOTIFY_H */`
Tim Waugh	5dd986
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+# include <libaudit.h>`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* Local functions...`
Tim Waugh	9ad376	`@@ -141,6 +146,9 @@`
Tim Waugh	9ad376	`int launchd_idle_exit;`
Tim Waugh	9ad376	`/* Idle exit on select timeout? */`
Tim Waugh	9ad376	`#endif /* HAVE_LAUNCHD */`
Tim Waugh	9ad376	`+#if WITH_LSPP`
Tim Waugh	9ad376	`+ auditfail_t failmode; /* Action for audit_open failure */`
Tim Waugh	9ad376	`+#endif /* WITH_LSPP */`
Tim Waugh	9ad376
Tim Waugh	9ad376
Tim Waugh	9ad376	`/*`
Tim Waugh	9ad376	`@@ -351,6 +359,25 @@`
Tim Waugh	5dd986	`#endif /* DEBUG */`
Tim Waugh	5dd986	`}`
Tim Waugh	5dd986
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ if ((AuditLog = audit_open()) < 0 )`
Tim Waugh	5dd986	`+ {`
Tim Waugh	9ad376	`+ if (get_auditfail_action(&failmode) == 0)`
Tim Waugh	5dd986	`+ {`
Tim Waugh	9ad376	`+ if (failmode == FAIL_LOG)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "Unable to connect to audit subsystem.");`
Tim Waugh	9ad376	`+ AuditLog = -1;`
Tim Waugh	9ad376	`+ }`
Tim Waugh	9ad376	`+ else if (failmode == FAIL_TERMINATE)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ fprintf(stderr, "cupsd: unable to start auditing, terminating");`
Tim Waugh	9ad376	`+ return -1;`
Tim Waugh	9ad376	`+ }`
Tim Waugh	5dd986	`+ }`
Tim Waugh	5dd986	`+ }`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`/*`
Tim Waugh	5dd986	`* Set the timezone info...`
Tim Waugh	5dd986	`*/`
Tim Waugh	9ad376	`@@ -1115,6 +1142,11 @@`
Tim Waugh	5dd986	`free(input);`
Tim Waugh	5dd986	`free(output);`
Tim Waugh	5dd986
Tim Waugh	5dd986	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ if (AuditLog != -1)`
Tim Waugh	9ad376	`+ audit_close(AuditLog);`
Tim Waugh	5dd986	`+#endif /* WITH_LSPP */`
Tim Waugh	5dd986	`+`
Tim Waugh	5dd986	`return (!stop_scheduler);`
Tim Waugh	5dd986	`}`
Tim Waugh	5dd986
Tim Waugh	22cc21	`--- cups-1.2.4-orig/scheduler/printers.c 2006-09-28 11:38:08.000000000 -0400`
Tim Waugh	22cc21	`+++ cups-1.2.4/scheduler/printers.c 2006-10-02 15:58:22.000000000 -0400`
Tim Waugh	5dd986	`@@ -57,6 +57,8 @@`
Tim Waugh	5dd986	`* printing desktop tools.`
Tim Waugh	75d0e8	`*/`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+/* (c) Copyright 2005-2006 Hewlett-Packard Development Company, L.P. */`
Tim Waugh	75d0e8	`+`
Tim Waugh	75d0e8	`/*`
Tim Waugh	75d0e8	`* Include necessary headers...`
Tim Waugh	75d0e8	`*/`
Tim Waugh	9ad376	`@@ -79,6 +81,10 @@`
Tim Waugh	5dd986	`static void write_irix_state(cupsd_printer_t *p);`
Tim Waugh	5dd986	`#endif /* __sgi */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+# include <libaudit.h>`
Tim Waugh	9ad376	`+# include <selinux/context.h>`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8	`/*`
Tim Waugh	5dd986	`* 'cupsdAddPrinter()' - Add a printer to the system.`
Tim Waugh	9ad376	`@@ -1472,6 +1478,13 @@`
Tim Waugh	5dd986	`"two-sided-long-edge",`
Tim Waugh	5dd986	`"two-sided-short-edge"`
Tim Waugh	5dd986	`};`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	5dd986	`+ char audit_message; / Audit message string */`
Tim Waugh	9ad376	`+ char printerfile; / Path to a local printer dev */`
Tim Waugh	9ad376	`+ char rangestr; / Printer's range if its available */`
Tim Waugh	9ad376	`+ security_context_t devcon; /* Printer SELinux context */`
Tim Waugh	9ad376	`+ context_t printercon; /* context_t for the printer */`
Tim Waugh	75d0e8	`+#endif /* WITH_LSPP */`
Tim Waugh	75d0e8
Tim Waugh	75d0e8
Tim Waugh	5dd986	`DEBUG_printf(("cupsdSetPrinterAttrs: entering name = %s, type = %x\n", p->name,`
Tim Waugh	22cc21	`@@ -1579,6 +1592,42 @@`
Tim Waugh	5dd986	`attr->values[1].string.text = _cupsStrAlloc(Classification ?`
Tim Waugh	5dd986	`Classification : p->job_sheets[1]);`
Tim Waugh	5dd986	`}`
Tim Waugh	75d0e8	`+#ifdef WITH_LSPP`
Tim Waugh	9ad376	`+ if (AuditLog != -1)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ audit_message = NULL;`
Tim Waugh	9ad376	`+ rangestr = NULL;`
Tim Waugh	9ad376	`+ printercon = 0;`
Tim Waugh	9ad376	`+ printerfile = strstr(p->device_uri, "/dev/");`
Tim Waugh	22cc21	`+ if (printerfile == NULL && (strncmp(p->device_uri, "file:/", 6) == 0))`
Tim Waugh	22cc21	`+ printerfile = strdup(p->device_uri + strlen("file:/"));`
Tim Waugh	75d0e8	`+`
Tim Waugh	9ad376	`+ if (printerfile != NULL)`
Tim Waugh	9ad376	`+ {`
Tim Waugh	9ad376	`+ if (getfilecon(printerfile, &devcon) == -1)`
Tim Waugh	22cc21	`+ cupsdLogMessage(CUPSD_LOG_ERROR, "cupsdSetPrinterAttrs: Unable to get printer context");`
Tim Waugh	9ad376	`+ else`
Tim Waugh	22cc21	`+ {`
Tim Waugh	9ad376	`+ printercon = context_new(devcon);`
Tim Waugh	22cc21	`+ freecon(devcon);`
Tim Waugh	22cc21	`+ }`
Tim Waugh	9ad376	`+ }`
Tim Waugh	75d0e8	`+`
Tim Waugh	111928	`+ if (printercon && context_range_get(printercon))`
Tim Waugh	22cc21	`+ rangestr = strdup(context_range_get(printercon));`
Tim Waugh	111928	`+ else`
Tim Waugh	9ad376	`+ rangestr = strdup("unknown");`
Tim Waugh	75d0e8	`+`
Tim Waugh	22cc21	`+ cupsdSetStringf(&audit_message, "printer=%s uri=%s banners=%s,%s range=%s",`
Tim Waugh	9ad376	`+ p->name, p->device_uri, p->job_sheets[0], p->job_sheets[1], rangestr);`
Tim Waugh	9ad376	`+ audit_log_user_message(AuditLog, AUDIT_LABEL_LEVEL_CHANGE, audit_message,`
Tim Waugh	9ad376	`+ ServerName, NULL, NULL, 1);`
Tim Waugh	9ad376	`+ if (printercon)`
Tim Waugh	9ad376	`+ context_free(printercon);`
Tim Waugh	9ad376	`+ free(rangestr);`
Tim Waugh	9ad376	`+ free(audit_message);`
Tim Waugh	9ad376	`+ }`
Tim Waugh	9ad376	`+#endif /* WITH_LSPP */`
Tim Waugh	9ad376	`}`
Tim Waugh	9ad376
Tim Waugh	9ad376	`printer_type = p->type;`

rpms / cups

Source Code

Blame cups-lspp.patch