rpms/selinux-policy/F-7 policy-20070501.patch,1.36,1.37

[Daniel J Walsh (dwalsh)]

Author: dwalsh

Update of /cvs/extras/rpms/selinux-policy/F-7
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv13730

Modified Files:
	policy-20070501.patch 
Log Message:
* Fri Jul 13 2007 Dan Walsh <dwalsh at redhat.com> 2.6.4-28
- Additional rules for openvpn reading homedirs


policy-20070501.patch:

Index: policy-20070501.patch
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/F-7/policy-20070501.patch,v
retrieving revision 1.36
retrieving revision 1.37
diff -u -r1.36 -r1.37
--- policy-20070501.patch	14 Jul 2007 11:42:46 -0000	1.36
+++ policy-20070501.patch	14 Jul 2007 12:01:58 -0000	1.37
@@ -5528,7 +5528,7 @@
 +')
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/openvpn.te serefpolicy-2.6.4/policy/modules/services/openvpn.te
 --- nsaserefpolicy/policy/modules/services/openvpn.te	2007-05-07 14:50:57.000000000 -0400
-+++ serefpolicy-2.6.4/policy/modules/services/openvpn.te	2007-07-13 13:11:46.000000000 -0400
++++ serefpolicy-2.6.4/policy/modules/services/openvpn.te	2007-07-14 07:58:50.000000000 -0400
 @@ -1,11 +1,18 @@
  
 -policy_module(openvpn,1.2.0)
@@ -5579,7 +5579,7 @@
  
  dev_search_sysfs(openvpn_t)
  dev_read_rand(openvpn_t)
-@@ -80,15 +90,31 @@
+@@ -80,15 +90,28 @@
  logging_send_syslog_msg(openvpn_t)
  
  miscfiles_read_localization(openvpn_t)
@@ -5609,10 +5609,7 @@
 +
 +# Need to interact with terminals if config option "auth-user-pass" is used
 +userdom_use_sysadm_terms(openvpn_t)
-+
-+optional_policy(`
-+	unconfined_use_terminals(openvpn_t)
-+')
++term_use_generic_ptys(openvpn_t)
 +
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/pcscd.te serefpolicy-2.6.4/policy/modules/services/pcscd.te
 --- nsaserefpolicy/policy/modules/services/pcscd.te	2007-05-07 14:50:57.000000000 -0400