rpms/selinux-policy/devel policy-20080710.patch,1.17,1.18
Daniel J Walsh (dwalsh)
fedora-extras-commits at redhat.com
Wed Aug 13 19:25:07 UTC 2008
- Previous message (by thread): rpms/vdrift/devel vdrift.spec,1.10,1.11
- Next message (by thread): rpms/python-netaddr/devel import.log, NONE, 1.1 python-netaddr.spec, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: dwalsh
Update of /cvs/extras/rpms/selinux-policy/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv31371
Modified Files:
policy-20080710.patch
Log Message:
* Tue Aug 12 2008 Dan Walsh <dwalsh at redhat.com> 3.5.4-2
- Allow ifconfig_t to read dhcpc_state_t
policy-20080710.patch:
Index: policy-20080710.patch
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/devel/policy-20080710.patch,v
retrieving revision 1.17
retrieving revision 1.18
diff -u -r1.17 -r1.18
--- policy-20080710.patch 13 Aug 2008 18:39:06 -0000 1.17
+++ policy-20080710.patch 13 Aug 2008 19:24:36 -0000 1.18
@@ -12353,7 +12353,7 @@
+
diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/clamav.te serefpolicy-3.5.4/policy/modules/services/clamav.te
--- nsaserefpolicy/policy/modules/services/clamav.te 2008-08-07 11:15:11.000000000 -0400
-+++ serefpolicy-3.5.4/policy/modules/services/clamav.te 2008-08-11 16:39:48.000000000 -0400
++++ serefpolicy-3.5.4/policy/modules/services/clamav.te 2008-08-13 15:22:54.000000000 -0400
@@ -13,7 +13,7 @@
# configuration files
@@ -12383,7 +12383,16 @@
corenet_all_recvfrom_unlabeled(clamd_t)
corenet_all_recvfrom_netlabel(clamd_t)
-@@ -120,6 +126,9 @@
+@@ -97,6 +103,8 @@
+ corenet_tcp_bind_all_nodes(clamd_t)
+ corenet_tcp_bind_clamd_port(clamd_t)
+ corenet_sendrecv_clamd_server_packets(clamd_t)
++corenet_tcp_bind_generic_port(clamd_t)
++corenet_tcp_connect_generic_port(clamd_t)
+
+ dev_read_rand(clamd_t)
+ dev_read_urand(clamd_t)
+@@ -120,6 +128,9 @@
cron_use_system_job_fds(clamd_t)
cron_rw_pipes(clamd_t)
@@ -12393,7 +12402,7 @@
optional_policy(`
amavis_read_lib_files(clamd_t)
amavis_read_spool_files(clamd_t)
-@@ -127,6 +136,10 @@
+@@ -127,6 +138,10 @@
amavis_create_pid_files(clamd_t)
')
@@ -12404,7 +12413,7 @@
########################################
#
# Freshclam local policy
-@@ -197,7 +210,7 @@
+@@ -197,7 +212,7 @@
allow clamscan_t self:fifo_file rw_file_perms;
allow clamscan_t self:unix_stream_socket create_stream_socket_perms;
allow clamscan_t self:unix_dgram_socket create_socket_perms;
@@ -12413,7 +12422,7 @@
# configuration files
allow clamscan_t clamd_etc_t:dir list_dir_perms;
-@@ -213,6 +226,14 @@
+@@ -213,6 +228,14 @@
manage_files_pattern(clamscan_t, clamd_var_lib_t, clamd_var_lib_t)
allow clamscan_t clamd_var_lib_t:dir list_dir_perms;
@@ -12428,7 +12437,7 @@
kernel_read_kernel_sysctls(clamscan_t)
files_read_etc_files(clamscan_t)
-@@ -230,6 +251,12 @@
+@@ -230,6 +253,12 @@
clamav_stream_connect(clamscan_t)
@@ -14316,7 +14325,7 @@
/var/run/dbus(/.*)? gen_context(system_u:object_r:system_dbusd_var_run_t,s0)
diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/dbus.if serefpolicy-3.5.4/policy/modules/services/dbus.if
--- nsaserefpolicy/policy/modules/services/dbus.if 2008-08-07 11:15:11.000000000 -0400
-+++ serefpolicy-3.5.4/policy/modules/services/dbus.if 2008-08-13 14:33:26.000000000 -0400
++++ serefpolicy-3.5.4/policy/modules/services/dbus.if 2008-08-13 15:01:27.000000000 -0400
@@ -53,6 +53,7 @@
gen_require(`
type system_dbusd_exec_t, system_dbusd_t, dbusd_etc_t;
@@ -14426,7 +14435,7 @@
xserver_use_xdm_fds($1_dbusd_t)
xserver_rw_xdm_pipes($1_dbusd_t)
+ xserver_dontaudit_xdm_lib_search($1_dbusd_t)
-+ xserver_rw_xdm_home_files',`
++ xserver_rw_xdm_home_files($1_dbusd_t)
')
')
@@ -16365,7 +16374,7 @@
+')
diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/ftp.te serefpolicy-3.5.4/policy/modules/services/ftp.te
--- nsaserefpolicy/policy/modules/services/ftp.te 2008-08-07 11:15:11.000000000 -0400
-+++ serefpolicy-3.5.4/policy/modules/services/ftp.te 2008-08-11 16:39:48.000000000 -0400
++++ serefpolicy-3.5.4/policy/modules/services/ftp.te 2008-08-13 14:54:18.000000000 -0400
@@ -75,6 +75,9 @@
type xferlog_t;
logging_log_file(xferlog_t)
- Previous message (by thread): rpms/vdrift/devel vdrift.spec,1.10,1.11
- Next message (by thread): rpms/python-netaddr/devel import.log, NONE, 1.1 python-netaddr.spec, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list