psss / rpms / selinux-policy

Forked from rpms/selinux-policy 5 years ago
Clone
Source Code
GIT

bd4ec66 * Thu Sep 14 2017 Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-260.9

Authored and Committed by lvrabec 6 years ago
raw patch tree parent
4 files changed. 672 lines added. 404 lines removed.
container-selinux.tgz
file modified
+0 -0
policy-f26-base.patch
file modified
+163 -87
policy-f26-contrib.patch
file modified
+464 -316
selinux-policy.spec
file modified
+45 -1 
    * Thu Sep 14 2017 Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-260.9
    - Allow svirt_t read userdomain state
    - Fix keepalived SELinux module
    - Allow automount domain to manage mount pid files
    - Allow stunnel_t domain setsched
    - Allow svirt_t read userdomain state
    - Fix keepalived SELinux module
    - Allow automount domain to manage mount pid files
    - Allow stunnel_t domain setsched
    - Add keepalived domain setpgid capability
    - dbus: add policy for dbus-broker
    - Revert "Add rules fixing installing ipa-server-install with SELinux in Enforcing. BZ(1488404)"
    - Allow tomcat domain to connect to mssql port
    - Fix typo bug in apache module
    - Dontaudit that system_mail_t is trying to read /root/ files
    - Merge branch 'f26' of github.com:fedora-selinux/selinux-policy-contrib into f26
    - networkmanager: allow talking to openvswitch
    - Merge pull request #27 from lslebodn/pki_tomcat_tf26
    - Make working webadm_t userdomain
    - Allow redis domain to execute shell scripts.
    - Allow system_cronjob_t to create redhat-access-insights.log with var_log_t
    - Add couple capabilities to keepalived domain and allow get attributes of all domains
    - Allow dmidecode read rhsmcertd lock files
    - Add new interface rhsmcertd_rw_lock_files()
    - Allow pki_tomcat_t use nsswitch
    - Allow logrotate_t to change passwd and reloead services
    - Label all plymouthd archives as plymouthd_var_log_t
    - Add rules fixing installing ipa-server-install with SELinux in Enforcing. BZ(1488404)
    - Add few rules to make tlp_t domain working in enforcing mode
    - Allow cloud_init_t to dbus chat with systemd_timedated_t
    - Allow logrotate_t to write to kmsg
    - Add capability kill to rhsmcertd_t
    - Allow winbind to manage smbd_tmp_t files
    - Allow ipa_dnskey_t to exec ipa_dnskey_exec_t files
    - Allow sysctl_irq_t assciate with proc_t
    - Allow sshd_t domain to send signull to xdm_t processes
    - Allow updpwd_t domain auth file name trans
    - Add support labeling for vmci and vsock device
    - Add userdom_dontaudit_manage_admin_files() interface
    - Allow iptables_t domain to read files with modules_conf_t label
    - Allow groupadd_t domain to dbus chat with systemd.BZ(1488404)
    - Allow useradd_t domain dbus chat with systemd
    - Dontaudit netutils to write to kdumpctl_tmp_t pipes BZ(1481670)
file modified
+0 -0
file modified
+163 -87
file modified
+464 -316
file modified
+45 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.