[Freeipa-devel] [PATCH] 414 Require new selinux-policy replacing old server-selinux subpackage
Martin Kosek
mkosek at redhat.com
Wed Jul 17 10:22:00 UTC 2013
Features of the new policy:
- labels /var/lib/ipa/pki-ca/publish as pki_tomcat_cert_t which is
writeable by PKI and readable by HTTPD
- contains Conflicts with old freeipa-server-selinux package to avoid
SELinux upgrade issues
https://fedorahosted.org/freeipa/ticket/3788
----
SELinux policy build is currently in koji:
http://koji.fedoraproject.org/koji/buildinfo?buildID=434328
bodhi update is planned to be done today as well. I tested both upgrade from
stable F19 version and clean installs and both worked fine.
I would like this patch to be included in upcoming FreeIPA 3.2.2 version.
Martin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-mkosek-414-require-new-selinux-policy-replacing-old-server-seli.patch
Type: text/x-patch
Size: 1554 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20130717/3bbab0d8/attachment.bin>
More information about the Freeipa-devel
mailing list