rpms/selinux-policy/devel policy-F12.patch, 1.11, 1.12 selinux-policy.spec, 1.865, 1.866

Daniel J Walsh dwalsh at fedoraproject.org
Thu Jun 18 20:02:18 UTC 2009 

Author: dwalsh

Update of /cvs/extras/rpms/selinux-policy/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv23091

Modified Files:
	policy-F12.patch selinux-policy.spec 
Log Message:
* Thu Jun 18 2009 Dan Walsh <dwalsh at redhat.com> 3.6.16-4
- Fix mcs rules to include chr_file and blk_file


policy-F12.patch:

Index: policy-F12.patch
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/devel/policy-F12.patch,v
retrieving revision 1.11
retrieving revision 1.12
diff -u -p -r1.11 -r1.12
--- policy-F12.patch	18 Jun 2009 14:42:33 -0000	1.11
+++ policy-F12.patch	18 Jun 2009 20:01:47 -0000	1.12
@@ -300,12 +300,14 @@ diff -b -B --ignore-all-space --exclude-
 +
 diff -b -B --ignore-all-space --exclude-from=exclude -N -u -r nsaserefpolicy/policy/mcs serefpolicy-3.6.16/policy/mcs
 --- nsaserefpolicy/policy/mcs	2009-05-21 08:43:08.000000000 -0400
-+++ serefpolicy-3.6.16/policy/mcs	2009-06-12 15:59:08.000000000 -0400
-@@ -67,7 +67,7 @@
++++ serefpolicy-3.6.16/policy/mcs	2009-06-18 12:58:31.000000000 -0400
+@@ -66,8 +66,8 @@
+ #
  # Note that getattr on files is always permitted.
  #
- mlsconstrain file { write setattr append unlink link rename ioctl lock execute relabelfrom }
+-mlsconstrain file { write setattr append unlink link rename ioctl lock execute relabelfrom }
 -	( h1 dom h2 );
++mlsconstrain { file chr_file blk_file sock_file lnk_file fifo_file } { write setattr append unlink link rename ioctl lock execute relabelfrom }
 +	(( h1 dom h2 ) or ( t1 == mlsfilewrite ));
  
  mlsconstrain dir { create getattr setattr read write link unlink rename search add_name remove_name reparent rmdir lock ioctl }


Index: selinux-policy.spec
===================================================================
RCS file: /cvs/extras/rpms/selinux-policy/devel/selinux-policy.spec,v
retrieving revision 1.865
retrieving revision 1.866
diff -u -p -r1.865 -r1.866
--- selinux-policy.spec	18 Jun 2009 14:42:34 -0000	1.865
+++ selinux-policy.spec	18 Jun 2009 20:01:47 -0000	1.866
@@ -20,7 +20,7 @@
 Summary: SELinux policy configuration
 Name: selinux-policy
 Version: 3.6.16
-Release: 3%{?dist}
+Release: 4%{?dist}
 License: GPLv2+
 Group: System Environment/Base
 Source: serefpolicy-%{version}.tgz
@@ -473,6 +473,9 @@ exit 0
 %endif
 
 %changelog
+* Thu Jun 18 2009 Dan Walsh <dwalsh at redhat.com> 3.6.16-4
+- Fix mcs rules to include chr_file and blk_file
+
 * Tue Jun 16 2009 Dan Walsh <dwalsh at redhat.com> 3.6.16-3
 - Add label for udev-acl

More information about the fedora-extras-commits mailing list