Blame pki-core-selinux-f16.patch
|
Kevin Wright |
a7394d6 |
diff --git a/pki/base/selinux/src/pki.if b/pki/base/selinux/src/pki.if
|
|
Kevin Wright |
a7394d6 |
index 0709176..9a35184 100644
|
|
Kevin Wright |
a7394d6 |
--- a/pki/base/selinux/src/pki.if
|
|
Kevin Wright |
a7394d6 |
+++ b/pki/base/selinux/src/pki.if
|
|
Kevin Wright |
a7394d6 |
@@ -193,7 +193,7 @@ template(`pki_ca_template',`
|
|
Kevin Wright |
a7394d6 |
corenet_tcp_connect_ldap_port($1_t)
|
|
Kevin Wright |
a7394d6 |
|
|
Kevin Wright |
a7394d6 |
# tomcat connects to ephemeral ports on shutdown
|
|
Kevin Wright |
a7394d6 |
- corenet_tcp_connect_all_unreserved_ports($1_t)
|
|
Kevin Wright |
a7394d6 |
+ corenet_tcp_connect_all_ephemeral_ports($1_t)
|
|
Kevin Wright |
a7394d6 |
|
|
Kevin Wright |
a7394d6 |
optional_policy(`
|
|
Kevin Wright |
a7394d6 |
#This is broken in selinux-policy we need java_exec defined, Will add to policy
|
|
Kevin Wright |
a7394d6 |
diff --git a/pki/base/selinux/src/pki.te b/pki/base/selinux/src/pki.te
|
|
Kevin Wright |
a7394d6 |
index 7f6e657..dab02d4 100644
|
|
Kevin Wright |
a7394d6 |
--- a/pki/base/selinux/src/pki.te
|
|
Kevin Wright |
a7394d6 |
+++ b/pki/base/selinux/src/pki.te
|
|
Kevin Wright |
a7394d6 |
@@ -1,4 +1,4 @@
|
|
![](https://seccdn.libravatar.org/avatar/87abc7d5f0f12d5605393cc16fd41f90f197168930848fbcc9c43655c4937547?s=16&d=retro) |
94ffff9 |
-policy_module(pki,10.0.2)
|
|
![](https://seccdn.libravatar.org/avatar/87abc7d5f0f12d5605393cc16fd41f90f197168930848fbcc9c43655c4937547?s=16&d=retro) |
94ffff9 |
+policy_module(pki,10.0.3)
|
|
Kevin Wright |
a7394d6 |
|
|
Kevin Wright |
a7394d6 |
attribute pki_ca_config;
|
|
Kevin Wright |
a7394d6 |
attribute pki_ca_executable;
|