rpms/selinux-policy/F-7 policy-20070501.patch,1.36,1.37
Daniel J Walsh (dwalsh)
fedora-extras-commits at redhat.com
Sat Jul 14 12:02:30 UTC 2007
Author: dwalsh
Update of /cvs/extras/rpms/selinux-policy/F-7
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv13730
Modified Files:
policy-20070501.patch
Log Message:
* Fri Jul 13 2007 Dan Walsh <dwalsh at redhat.com> 2.6.4-28
- Additional rules for openvpn reading homedirs
policy-20070501.patch:
Index: policy-20070501.patch
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/F-7/policy-20070501.patch,v
retrieving revision 1.36
retrieving revision 1.37
diff -u -r1.36 -r1.37
--- policy-20070501.patch 14 Jul 2007 11:42:46 -0000 1.36
+++ policy-20070501.patch 14 Jul 2007 12:01:58 -0000 1.37
@@ -5528,7 +5528,7 @@
+')
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/openvpn.te serefpolicy-2.6.4/policy/modules/services/openvpn.te
--- nsaserefpolicy/policy/modules/services/openvpn.te 2007-05-07 14:50:57.000000000 -0400
-+++ serefpolicy-2.6.4/policy/modules/services/openvpn.te 2007-07-13 13:11:46.000000000 -0400
++++ serefpolicy-2.6.4/policy/modules/services/openvpn.te 2007-07-14 07:58:50.000000000 -0400
@@ -1,11 +1,18 @@
-policy_module(openvpn,1.2.0)
@@ -5579,7 +5579,7 @@
dev_search_sysfs(openvpn_t)
dev_read_rand(openvpn_t)
-@@ -80,15 +90,31 @@
+@@ -80,15 +90,28 @@
logging_send_syslog_msg(openvpn_t)
miscfiles_read_localization(openvpn_t)
@@ -5609,10 +5609,7 @@
+
+# Need to interact with terminals if config option "auth-user-pass" is used
+userdom_use_sysadm_terms(openvpn_t)
-+
-+optional_policy(`
-+ unconfined_use_terminals(openvpn_t)
-+')
++term_use_generic_ptys(openvpn_t)
+
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/pcscd.te serefpolicy-2.6.4/policy/modules/services/pcscd.te
--- nsaserefpolicy/policy/modules/services/pcscd.te 2007-05-07 14:50:57.000000000 -0400
More information about the fedora-extras-commits
mailing list