rpms / selinux-policy

Clone
Source Code
GIT

da973f3 - Add xserver_xdm_ioctl_log() interface

Authored and Committed by mgrepl 11 years ago
raw patch tree parent
3 files changed. 1585 lines added. 714 lines removed.
policy-rawhide-base.patch
file modified
+330 -291
policy-rawhide-contrib.patch
file modified
+1204 -422
selinux-policy.spec
file modified
+51 -1 
    - Add xserver_xdm_ioctl_log() interface
    - Allow Xusers to ioctl lxdm.log to make lxdm working
    - Add MLS fixes to make MLS boot/log-in working
    - Add mls_socket_write_all_levels() also for syslogd
    - fsck.xfs needs to read passwd
    - Fix ntp_filetrans_named_content calling in init.te
    - Allow postgresql to create pg_log dir
    - Allow sshd to read rsync_data_t to make rsync <backuphost> working
    - Change ntp.conf to be labeled net_conf_t
    - Allow useradd to create homedirs in /run.  ircd-ratbox does this and we sho
    - Allow xdm_t to execute gstreamer home content
    - Allod initrc_t and unconfined domains, and sysadm_t to manage ntp
    - New policy for openstack swift domains
    - More access required for openshift_cron_t
    - Use cupsd_log_t instead of cupsd_var_log_t
    - rpm_script_roles should be used in rpm_run
    - Fix rpm_run() interface
    - Fix openshift_initrc_run()
    - Fix sssd_dontaudit_stream_connect() interface
    - Fix sssd_dontaudit_stream_connect() interface
    - Allow LDA's job to deliver mail to the mailbox
    - dontaudit block_suspend for mozilla_plugin_t
    - Allow l2tpd_t to all signal perms
    - Allow uuidgen to read /dev/random
    - Allow mozilla-plugin-config to read power_supply info
    - Implement cups_domain attribute for cups domains
    - We now need access to user terminals since we start by executing a command
    - We now need access to user terminals since we start by executing a command
    - svirt lxc containers want to execute userhelper apps, need these changes to
    - Add containment of openshift cron jobs
    - Allow system cron jobs to create tmp directories
    - Make userhelp_conf_t a config file
    - Change rpm to use rpm_script_roles
    - More fixes for rsync to make rsync <backuphost> wokring
    - Allow logwatch to domtrans to mdadm
    - Allow pacemaker to domtrans to ifconfig
    - Allow pacemaker to setattr on corosync.log
    - Add pacemaker_use_execmem for memcheck-amd64 command
    - Allow block_suspend capability
    - Allow create fifo_file in /tmp with pacemaker_tmp_t
    - Allow systat to getattr on fixed disk
    - Relabel /etc/ntp.conf to be net_conf_t
    - ntp_admin should create files in /etc with the correct label
    - Add interface to create ntp_conf_t files in /etc
    - Add additional labeling for quantum
    - Allow quantum to execute dnsmasq with transition
file modified
+330 -291
file modified
+1204 -422
file modified
+51 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.