psss / rpms / selinux-policy

Forked from rpms/selinux-policy 5 years ago
Clone
Source Code
GIT

00ea8f6 * Tue Jan 30 2018 Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-283.23

Authored and Committed by lvrabec 6 years ago
raw patch tree parent
4 files changed. 603 lines added. 442 lines removed.
container-selinux.tgz
file modified
+0 -0
policy-f27-base.patch
file modified
+354 -331
policy-f27-contrib.patch
file modified
+214 -110
selinux-policy.spec
file modified
+35 -1 
    * Tue Jan 30 2018 Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-283.23
    - Update dbus_role_template() BZ(1536218)
    - Allow lldpad_t domain to mmap own tmpfs files BZ(1534119)
    - Allow blueman_t dbus chat with policykit_t BZ(1470501)
    - Expand virt_read_lib_files() interface to allow list dirs with label virt_var_lib_t BZ(1507110)
    - Allow dspam_t to mmap dspam_rw_content_t files BZ(1528723)
    - Allow postfix_master_t and postfix_local_t to connect to system dbus. BZ(1530275)
    - Allow system_munin_plugin_t domain to read sssd public files and allow stream connect to ssd daemon BZ(1528471)
    - Allow rkt_t domain to bind on rkt_port_t tcp BZ(1534636)
    - Allow jetty_t domain to mmap own temp files BZ(1534628)
    - Merge pull request #46 from jlebon/pr/rot-sd-dbus-f27
    - Allow virt_domains to acces infiniband pkeys.
    - Allow aide to mmap usr_t files BZ(1534182)
    - Allow ypserv_t domain to connect to tcp ports BZ(1534245)
    - Allow vmtools_t domain creating vmware_log_t files
    - Allow openvswitch_t domain to acces infiniband devices
    - Allow dirsrv_t domain to create tmp link files
    - Allow pcp_pmie_t domain to exec itself. BZ(153326)
    - Update openvswitch SELinux module
    - Allow virtd_t to create also sock_files with label virt_var_run_t
    - Allow logwatch to exec journal binaries BZ(1403463)
    - Allow install_t to chat with systemd over D-Bus
    - Merge pull request #210 from cgwalters/boot-labeling
    - Merge pull request #209 from cgwalters/sysimage-label
    - Consistently label usr_t for kernel/initrd in /usr
    - kernel/files.fc: Label /usr/lib/sysimage as usr_t
    - Allow iptables sysctl load list support with SELinux enforced
    - Label HOME_DIR/.config/systemd/user/* user unit files as systemd_unit_file_t BZ(1531864)
    - Allow systemd to relabelfrom tmpfs_t link files in /var/run/systemd/units/ BZ(1535180)
    - Label /usr/libexec/ipsec/addconn as ipsec_exec_t to run this script as ipsec_t instead of init_t
    - Allow audisp_remote_t domain write to files on all levels
    - Allow sysadm_t and staff_t roles to manage user systemd services BZ(1531864)
    - Update logging_read_all_logs to allow mmap all logfiles BZ(1403463
file modified
+0 -0
file modified
+354 -331
file modified
+214 -110
file modified
+35 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.