rpms/selinux-policy/devel policy-20080509.patch, 1.33, 1.34 selinux-policy.spec, 1.682, 1.683
Daniel J Walsh (dwalsh)
fedora-extras-commits at redhat.com
Wed Jul 9 13:06:41 UTC 2008
- Previous message (by thread): rpms/policycoreutils/devel policycoreutils-rhat.patch, 1.375, 1.376 policycoreutils.spec, 1.539, 1.540
- Next message (by thread): rpms/kdeartwork/devel .cvsignore, 1.44, 1.45 kdeartwork.spec, 1.83, 1.84 sources, 1.46, 1.47
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: dwalsh
Update of /cvs/extras/rpms/selinux-policy/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv492
Modified Files:
policy-20080509.patch selinux-policy.spec
Log Message:
Add nscd inotify fix
policy-20080509.patch:
Index: policy-20080509.patch
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/devel/policy-20080509.patch,v
retrieving revision 1.33
retrieving revision 1.34
diff -u -r1.33 -r1.34
--- policy-20080509.patch 8 Jul 2008 20:14:39 -0000 1.33
+++ policy-20080509.patch 9 Jul 2008 13:05:54 -0000 1.34
@@ -19221,7 +19221,7 @@
+
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/nscd.te serefpolicy-3.4.2/policy/modules/services/nscd.te
--- nsaserefpolicy/policy/modules/services/nscd.te 2008-06-12 23:25:05.000000000 -0400
-+++ serefpolicy-3.4.2/policy/modules/services/nscd.te 2008-07-02 08:47:04.000000000 -0400
++++ serefpolicy-3.4.2/policy/modules/services/nscd.te 2008-07-09 07:41:41.000000000 -0400
@@ -23,19 +23,22 @@
type nscd_log_t;
logging_log_file(nscd_log_t)
@@ -19257,7 +19257,15 @@
kernel_read_kernel_sysctls(nscd_t)
kernel_list_proc(nscd_t)
kernel_read_proc_symlinks(nscd_t)
-@@ -73,6 +78,7 @@
+@@ -60,6 +65,7 @@
+
+ fs_getattr_all_fs(nscd_t)
+ fs_search_auto_mountpoints(nscd_t)
++fs_list_inotifyfs(nscd_t)
+
+ # for when /etc/passwd has just been updated and has the wrong type
+ auth_getattr_shadow(nscd_t)
+@@ -73,6 +79,7 @@
corenet_udp_sendrecv_all_nodes(nscd_t)
corenet_tcp_sendrecv_all_ports(nscd_t)
corenet_udp_sendrecv_all_ports(nscd_t)
@@ -19265,7 +19273,7 @@
corenet_tcp_connect_all_ports(nscd_t)
corenet_sendrecv_all_client_packets(nscd_t)
corenet_rw_tun_tap_dev(nscd_t)
-@@ -84,6 +90,7 @@
+@@ -84,6 +91,7 @@
selinux_compute_relabel_context(nscd_t)
selinux_compute_user_contexts(nscd_t)
domain_use_interactive_fds(nscd_t)
@@ -19273,7 +19281,7 @@
files_read_etc_files(nscd_t)
files_read_generic_tmp_symlinks(nscd_t)
-@@ -93,6 +100,7 @@
+@@ -93,6 +101,7 @@
libs_use_ld_so(nscd_t)
libs_use_shared_libs(nscd_t)
@@ -19281,7 +19289,7 @@
logging_send_syslog_msg(nscd_t)
miscfiles_read_localization(nscd_t)
-@@ -108,6 +116,14 @@
+@@ -108,6 +117,14 @@
sysadm_dontaudit_search_home_dirs(nscd_t)
optional_policy(`
@@ -19296,7 +19304,7 @@
udev_read_db(nscd_t)
')
-@@ -115,3 +131,12 @@
+@@ -115,3 +132,12 @@
xen_dontaudit_rw_unix_stream_sockets(nscd_t)
xen_append_log(nscd_t)
')
Index: selinux-policy.spec
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/devel/selinux-policy.spec,v
retrieving revision 1.682
retrieving revision 1.683
diff -u -r1.682 -r1.683
--- selinux-policy.spec 8 Jul 2008 20:14:39 -0000 1.682
+++ selinux-policy.spec 9 Jul 2008 13:05:54 -0000 1.683
@@ -17,7 +17,7 @@
Summary: SELinux policy configuration
Name: selinux-policy
Version: 3.4.2
-Release: 13%{?dist}
+Release: 14%{?dist}
License: GPLv2+
Group: System Environment/Base
Source: serefpolicy-%{version}.tgz
@@ -278,7 +278,7 @@
%post targeted
if [ $1 -eq 1 ]; then
%loadpolicy targeted
-semanage user -a -S targeted -P user -R "unconfined_r system_r" -r s0-s0:c0.c1023 unconfined_u
+bnsemanage user -a -S targeted -P user -R "unconfined_r system_r" -r s0-s0:c0.c1023 unconfined_u
semanage login -m -S targeted -s "unconfined_u" -r s0-s0:c0.c1023 __default__
semanage login -m -S targeted -s "unconfined_u" -r s0-s0:c0.c1023 root
semanage user -a -S targeted -P user -R guest_r guest_u
@@ -375,6 +375,9 @@
%endif
%changelog
+* Wed Jul 9 2008 Dan Walsh <dwalsh at redhat.com> 3.4.2-14
+- Add inotify support to nscd
+
* Tue Jul 8 2008 Dan Walsh <dwalsh at redhat.com> 3.4.2-13
- Allow unconfined_t to setfcap
- Previous message (by thread): rpms/policycoreutils/devel policycoreutils-rhat.patch, 1.375, 1.376 policycoreutils.spec, 1.539, 1.540
- Next message (by thread): rpms/kdeartwork/devel .cvsignore, 1.44, 1.45 kdeartwork.spec, 1.83, 1.84 sources, 1.46, 1.47
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list