--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/components/openssl/openssl-default/files/audit_tags Fri Jan 22 15:06:19 2016 -0800
@@ -0,0 +1,4 @@
+solaris:security:path:"[\S]*/usr/bin/CA.pl$"
+solaris:security:path:"[\S]*/lib/openssl/default/CA.pl$"
+solaris:security:path:"[\S]*/usr/bin/openssl$"
+solaris:security:path:"[\S]*/lib/openssl/default/openssl$"
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/components/openssl/openssl-default/files/exec_attr Fri Jan 22 15:06:19 2016 -0800
@@ -0,0 +1,2 @@
+Crypto Management:solaris:cmd:RO::/usr/bin/openssl:euid=0
+Crypto Management:solaris:cmd:RO::/usr/bin/CA.pl:euid=0
--- a/components/openssl/openssl-default/openssl-default.p5m Fri Jan 22 12:12:24 2016 -0800
+++ b/components/openssl/openssl-default/openssl-default.p5m Fri Jan 22 15:06:19 2016 -0800
@@ -18,7 +18,7 @@
#
# CDDL HEADER END
#
-# Copyright (c) 2011, 2015, Oracle and/or its affiliates. All rights reserved.
+# Copyright (c) 2011, 2016, Oracle and/or its affiliates. All rights reserved.
#
<transform file path=usr.*/man/.+ -> default mangler.man.stability uncommitted>
@@ -44,6 +44,10 @@
file path=etc/openssl/openssl.cnf group=sys mode=0644 \
original_name=SUNWopenssl:etc/sfw/openssl/openssl.cnf preserve=true
dir path=etc/openssl/private group=sys mode=0700
+file files/audit_tags path=etc/security/audit_tags.d/library:security:openssl \
+ group=sys
+file files/exec_attr path=etc/security/exec_attr.d/library:security:openssl \
+ group=sys
link path=etc/sfw/openssl target=../openssl
link path=lib/$(MACH64)/libcrypto.so target=libcrypto.so.1.0.0
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/components/openssl/openssl-fips-140/files/audit_tags Fri Jan 22 15:06:19 2016 -0800
@@ -0,0 +1,4 @@
+solaris:security:path:"[\S]*/usr/bin/CA.pl$"
+solaris:security:path:"[\S]*/lib/openssl/fips-140/CA.pl$"
+solaris:security:path:"[\S]*/usr/bin/openssl$"
+solaris:security:path:"[\S]*/lib/openssl/fips-140/openssl$"
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/components/openssl/openssl-fips-140/files/exec_attr Fri Jan 22 15:06:19 2016 -0800
@@ -0,0 +1,2 @@
+Crypto Management:solaris:cmd:RO::/usr/bin/openssl:euid=0
+Crypto Management:solaris:cmd:RO::/usr/bin/CA.pl:euid=0
--- a/components/openssl/openssl-fips-140/openssl-fips-140.p5m Fri Jan 22 12:12:24 2016 -0800
+++ b/components/openssl/openssl-fips-140/openssl-fips-140.p5m Fri Jan 22 15:06:19 2016 -0800
@@ -18,7 +18,7 @@
#
# CDDL HEADER END
#
-# Copyright (c) 2011, 2015, Oracle and/or its affiliates. All rights reserved.
+# Copyright (c) 2011, 2016, Oracle and/or its affiliates. All rights reserved.
#
# Header files.
@@ -51,6 +51,12 @@
# Basic directories and a configuration file.
file etc/openssl/openssl.cnf path=etc/openssl/fips-140/openssl.cnf group=sys \
mode=0644 preserve=true
+file files/audit_tags \
+ path=etc/security/audit_tags.d/library:security:openssl:openssl-fips-140 \
+ group=sys
+file files/exec_attr \
+ path=etc/security/exec_attr.d/library:security:openssl:openssl-fips-140 \
+ group=sys
link path=lib/$(MACH64)/libcrypto.so.1.0.0 \
target=../openssl/fips-140/$(MACH64)/libcrypto.so.1.0.0 mediator=openssl \
mediator-implementation=fips-140