rpms/selinux-policy/devel .cvsignore, 1.118, 1.119 policy-20070703.patch, 1.10, 1.11 sources, 1.129, 1.130

Daniel J Walsh (dwalsh) fedora-extras-commits at redhat.com
Thu Jul 19 14:45:49 UTC 2007 

Author: dwalsh

Update of /cvs/extras/rpms/selinux-policy/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv17967

Modified Files:
	.cvsignore policy-20070703.patch sources 
Log Message:
* Tue Jul 17 2007 Dan Walsh <dwalsh at redhat.com> 3.0.2-9
- Allow execution of gconf



Index: .cvsignore
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/devel/.cvsignore,v
retrieving revision 1.118
retrieving revision 1.119
diff -u -r1.118 -r1.119
--- .cvsignore	3 Jul 2007 19:20:47 -0000	1.118
+++ .cvsignore	19 Jul 2007 14:45:16 -0000	1.119
@@ -120,3 +120,4 @@
 serefpolicy-2.6.5.tgz
 serefpolicy-3.0.1.tgz
 serefpolicy-3.0.2.tgz
+serefpolicy-3.0.3.tgz

policy-20070703.patch:

Index: policy-20070703.patch
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/devel/policy-20070703.patch,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -r1.10 -r1.11
--- policy-20070703.patch	19 Jul 2007 14:37:59 -0000	1.10
+++ policy-20070703.patch	19 Jul 2007 14:45:16 -0000	1.11
@@ -5536,16 +5536,25 @@
 +')
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/ntp.te serefpolicy-3.0.3/policy/modules/services/ntp.te
 --- nsaserefpolicy/policy/modules/services/ntp.te	2007-07-03 07:06:27.000000000 -0400
-+++ serefpolicy-3.0.3/policy/modules/services/ntp.te	2007-07-19 09:24:25.000000000 -0400
-@@ -40,6 +40,7 @@
++++ serefpolicy-3.0.3/policy/modules/services/ntp.te	2007-07-19 10:44:14.000000000 -0400
+@@ -36,6 +36,7 @@
+ dontaudit ntpd_t self:capability { net_admin sys_tty_config fsetid sys_nice };
+ allow ntpd_t self:process { signal_perms setcap setsched setrlimit };
+ allow ntpd_t self:fifo_file { read write getattr };
++allow ntpd_t self:shm create_shm_perms;
+ allow ntpd_t self:unix_dgram_socket create_socket_perms;
  allow ntpd_t self:unix_stream_socket create_socket_perms;
  allow ntpd_t self:tcp_socket create_stream_socket_perms;
- allow ntpd_t self:udp_socket create_socket_perms;
-+allow ntpd_t self:shm create_shm_perms;
+@@ -82,6 +83,8 @@
+ 
+ fs_getattr_all_fs(ntpd_t)
+ fs_search_auto_mountpoints(ntpd_t)
++# Necessary to communicate with gpsd devices
++fs_rw_tmpfs_files(ntpd_t)
  
- manage_files_pattern(ntpd_t,ntp_drift_t,ntp_drift_t)
+ auth_use_nsswitch(ntpd_t)
  
-@@ -107,6 +108,8 @@
+@@ -107,6 +110,8 @@
  
  sysnet_read_config(ntpd_t)
  
@@ -5554,7 +5563,7 @@
  userdom_dontaudit_use_unpriv_user_fds(ntpd_t)
  userdom_list_sysadm_home_dirs(ntpd_t)
  userdom_dontaudit_list_sysadm_home_dirs(ntpd_t)
-@@ -126,6 +129,10 @@
+@@ -126,9 +131,14 @@
  ')
  
  optional_policy(`
@@ -5565,6 +5574,10 @@
  	seutil_sigchld_newrole(ntpd_t)
  ')
  
+ optional_policy(`
+ 	udev_read_db(ntpd_t)
+ ')
++
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/openvpn.if serefpolicy-3.0.3/policy/modules/services/openvpn.if
 --- nsaserefpolicy/policy/modules/services/openvpn.if	2007-05-29 14:10:57.000000000 -0400
 +++ serefpolicy-3.0.3/policy/modules/services/openvpn.if	2007-07-17 15:46:25.000000000 -0400


Index: sources
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/devel/sources,v
retrieving revision 1.129
retrieving revision 1.130
diff -u -r1.129 -r1.130
--- sources	3 Jul 2007 19:20:47 -0000	1.129
+++ sources	19 Jul 2007 14:45:16 -0000	1.130
@@ -1 +1 @@
-7487348a6530067125f23316f43ff369  serefpolicy-3.0.2.tgz
+af54ae49007f995f1cb9e5d6f5baf8bf  serefpolicy-3.0.3.tgz

More information about the fedora-extras-commits mailing list