rpms/selinux-policy-strict/devel policy-20050719.patch, 1.1, 1.2 selinux-policy-strict.spec, 1.354, 1.355 policy-20050606.patch, 1.23, NONE policy-20050629.patch, 1.5, NONE
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Wed Jul 20 03:37:47 UTC 2005
Author: dwalsh
Update of /cvs/dist/rpms/selinux-policy-strict/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv30347
Modified Files:
policy-20050719.patch selinux-policy-strict.spec
Removed Files:
policy-20050606.patch policy-20050629.patch
Log Message:
* Tue Jul 19 2005 Dan Walsh <dwalsh at redhat.com> 1.25.3-1
- Update to latest from NSA
policy-20050719.patch:
domains/program/crond.te | 2 +-
domains/program/fsadm.te | 2 +-
domains/program/getty.te | 2 +-
domains/program/ifconfig.te | 1 +
domains/program/initrc.te | 2 +-
domains/program/modutil.te | 2 +-
domains/program/unused/NetworkManager.te | 8 ++++++++
domains/program/unused/apmd.te | 2 +-
domains/program/unused/cvs.te | 10 ++++++++++
domains/program/unused/cyrus.te | 1 +
domains/program/unused/evolution.te | 1 +
domains/program/unused/hald.te | 4 ++++
domains/program/unused/hotplug.te | 3 ++-
domains/program/unused/kudzu.te | 5 +++--
domains/program/unused/lvm.te | 2 +-
domains/program/unused/mta.te | 2 +-
domains/program/unused/pamconsole.te | 2 +-
domains/program/unused/ping.te | 4 ++++
domains/program/unused/postgresql.te | 1 +
domains/program/unused/pppd.te | 29 ++++++++++++++++++++++++++++-
domains/program/unused/rlogind.te | 1 +
domains/program/unused/slocate.te | 3 ++-
domains/program/unused/squid.te | 1 +
domains/program/unused/thunderbird.te | 1 +
domains/program/unused/udev.te | 5 +++--
domains/program/unused/vpnc.te | 15 +++++++++++++--
domains/program/unused/winbind.te | 1 +
file_contexts/distros.fc | 6 ++++++
file_contexts/program/pppd.fc | 1 +
file_contexts/program/vpnc.fc | 1 +
genfs_contexts | 1 +
macros/admin_macros.te | 1 +
macros/base_user_macros.te | 13 -------------
macros/content_macros.te | 5 ++++-
macros/global_macros.te | 19 +++++++++++++++++++
macros/program/cdrecord_macros.te | 7 +++++--
macros/program/evolution_macros.te | 7 +++----
macros/program/gconf_macros.te | 1 +
macros/program/gnome_vfs_macros.te | 6 ++++++
macros/program/mail_client_macros.te | 13 +++++++++++--
macros/program/mozilla_macros.te | 6 +++++-
macros/program/thunderbird_macros.te | 14 ++++++++------
macros/user_macros.te | 18 +++---------------
net_contexts | 1 +
targeted/domains/program/crond.te | 9 ++++++---
tunables/distro.tun | 2 +-
tunables/tunable.tun | 7 ++-----
types/file.te | 9 +++++++++
types/network.te | 1 +
49 files changed, 189 insertions(+), 71 deletions(-)
Index: policy-20050719.patch
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy-strict/devel/policy-20050719.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- policy-20050719.patch 20 Jul 2005 02:56:26 -0000 1.1
+++ policy-20050719.patch 20 Jul 2005 03:37:43 -0000 1.2
@@ -228,16 +228,18 @@
# for /var/run/console.lock checking
diff --exclude-from=exclude -N -u -r nsapolicy/domains/program/unused/ping.te policy-1.25.3/domains/program/unused/ping.te
--- nsapolicy/domains/program/unused/ping.te 2005-07-06 17:15:07.000000000 -0400
-+++ policy-1.25.3/domains/program/unused/ping.te 2005-07-19 15:41:44.000000000 -0400
-@@ -17,6 +17,7 @@
++++ policy-1.25.3/domains/program/unused/ping.te 2005-07-19 23:17:05.000000000 -0400
+@@ -17,6 +17,9 @@
in_user_role(ping_t)
type ping_exec_t, file_type, sysadmfile, exec_type;
-+ifdef(`targeted_policy', `', `
++ifdef(`targeted_policy', `
++ allow ping_t { devpts_t ttyfile ptyfile }:chr_file rw_file_perms;
++', `
bool user_ping false;
if (user_ping) {
-@@ -25,6 +26,7 @@
+@@ -25,6 +28,7 @@
allow ping_t { ttyfile ptyfile }:chr_file rw_file_perms;
ifdef(`gnome-pty-helper.te', `allow ping_t gphdomain:fd use;')
}
Index: selinux-policy-strict.spec
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy-strict/devel/selinux-policy-strict.spec,v
retrieving revision 1.354
retrieving revision 1.355
diff -u -r1.354 -r1.355
--- selinux-policy-strict.spec 19 Jul 2005 21:12:00 -0000 1.354
+++ selinux-policy-strict.spec 20 Jul 2005 03:37:43 -0000 1.355
@@ -199,7 +199,14 @@
%config %{_sysconfdir}/selinux/%{type}/src/policy/attrib.te
%config %{_sysconfdir}/selinux/%{type}/src/policy/constraints
%dir %{_sysconfdir}/selinux/%{type}/src/policy/domains
-%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/*
+%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/*\.te
+%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/program/*
+%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/misc/auth-net.te
+%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/misc/fcron.te
+%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/misc/kernel.te
+%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/misc/startx.te
+%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/misc/userspace_objmgr.te
+%config %{_sysconfdir}/selinux/%{type}/src/policy/domains/misc/xclient.te
%config(noreplace) %{_sysconfdir}/selinux/%{type}/src/policy/domains/misc/local.te
%dir %{_sysconfdir}/selinux/%{type}/src/policy/file_contexts
%config %{_sysconfdir}/selinux/%{type}/src/policy/file_contexts/*
--- policy-20050606.patch DELETED ---
--- policy-20050629.patch DELETED ---
More information about the fedora-cvs-commits
mailing list