rpms/selinux-policy/devel policy-20060829.patch,1.12,1.13
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Wed Sep 6 18:53:49 UTC 2006
- Previous message (by thread): rpms/pam_pkcs11/devel pam_pkcs11-0.5.3-l10n.patch, NONE, 1.1 pam_pkcs11-0.5.3-nss.patch, 1.2, 1.3 pam_pkcs11-0.5.3-ocsp.patch, 1.2, 1.3 pam_pkcs11.spec, 1.15, 1.16 rh_pam_pkcs11.conf, 1.5, 1.6
- Next message (by thread): rpms/mkinitrd/devel sources,1.159,1.160
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: dwalsh
Update of /cvs/dist/rpms/selinux-policy/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv30584
Modified Files:
policy-20060829.patch
Log Message:
* Wed Sep 6 2006 Dan Walsh <dwalsh at redhat.com> 2.3.13-1
- Update from upstream
policy-20060829.patch:
Makefile | 23 -
Rules.modular | 10
policy/modules/admin/anaconda.te | 6
policy/modules/admin/bootloader.fc | 1
policy/modules/admin/bootloader.te | 2
policy/modules/admin/consoletype.te | 7
policy/modules/admin/rpm.fc | 2
policy/modules/admin/rpm.if | 13
policy/modules/apps/java.fc | 2
policy/modules/apps/mono.te | 9
policy/modules/kernel/corenetwork.te.in | 3
policy/modules/kernel/files.fc | 1
policy/modules/kernel/filesystem.if | 19 +
policy/modules/services/amavis.te | 1
policy/modules/services/apache.te | 1
policy/modules/services/bluetooth.te | 4
policy/modules/services/ccs.fc | 8
policy/modules/services/ccs.if | 65 ++++
policy/modules/services/ccs.te | 87 ++++++
policy/modules/services/clamav.te | 1
policy/modules/services/cron.te | 1
policy/modules/services/dbus.if | 1
policy/modules/services/oddjob.fc | 8
policy/modules/services/oddjob.if | 76 +++++
policy/modules/services/oddjob.te | 73 +++++
policy/modules/services/oddjob_mkhomedir.fc | 6
policy/modules/services/oddjob_mkhomedir.if | 24 +
policy/modules/services/oddjob_mkhomedir.te | 29 ++
policy/modules/services/pegasus.if | 31 ++
policy/modules/services/pegasus.te | 5
policy/modules/services/postfix.te | 6
policy/modules/services/ricci.fc | 20 +
policy/modules/services/ricci.if | 184 +++++++++++++
policy/modules/services/ricci.te | 386 ++++++++++++++++++++++++++++
policy/modules/services/rpc.te | 1
policy/modules/services/xserver.if | 24 +
policy/modules/system/hostname.te | 5
policy/modules/system/init.te | 3
policy/modules/system/selinuxutil.te | 3
policy/modules/system/userdomain.if | 268 +++++++++++++------
policy/modules/system/userdomain.te | 48 +--
41 files changed, 1331 insertions(+), 136 deletions(-)
Index: policy-20060829.patch
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy/devel/policy-20060829.patch,v
retrieving revision 1.12
retrieving revision 1.13
diff -u -r1.12 -r1.13
--- policy-20060829.patch 6 Sep 2006 18:29:35 -0000 1.12
+++ policy-20060829.patch 6 Sep 2006 18:53:46 -0000 1.13
@@ -144,7 +144,7 @@
# /usr
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/apps/mono.te serefpolicy-2.3.13/policy/modules/apps/mono.te
--- nsaserefpolicy/policy/modules/apps/mono.te 2006-09-01 14:10:17.000000000 -0400
-+++ serefpolicy-2.3.13/policy/modules/apps/mono.te 2006-09-06 13:18:45.000000000 -0400
++++ serefpolicy-2.3.13/policy/modules/apps/mono.te 2006-09-06 14:34:04.000000000 -0400
@@ -7,10 +7,8 @@
#
@@ -157,6 +157,16 @@
########################################
#
+@@ -42,4 +40,9 @@
+ optional_policy(`
+ unconfined_dbus_connect(mono_t)
+ ')
++
++ optional_policy(`
++ cups_dbus_chat(mono_t)
++ ')
++
+ ')
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/kernel/corenetwork.te.in serefpolicy-2.3.13/policy/modules/kernel/corenetwork.te.in
--- nsaserefpolicy/policy/modules/kernel/corenetwork.te.in 2006-09-06 13:04:50.000000000 -0400
+++ serefpolicy-2.3.13/policy/modules/kernel/corenetwork.te.in 2006-09-06 13:18:45.000000000 -0400
@@ -1393,8 +1403,8 @@
# cjp: this should really have its own type
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/xserver.if serefpolicy-2.3.13/policy/modules/services/xserver.if
--- nsaserefpolicy/policy/modules/services/xserver.if 2006-09-06 13:04:51.000000000 -0400
-+++ serefpolicy-2.3.13/policy/modules/services/xserver.if 2006-09-06 13:18:45.000000000 -0400
-@@ -1152,3 +1152,45 @@
++++ serefpolicy-2.3.13/policy/modules/services/xserver.if 2006-09-06 14:39:14.000000000 -0400
+@@ -1152,3 +1152,27 @@
allow $1 xdm_xserver_tmp_t:sock_file write;
allow $1 xdm_xserver_t:unix_stream_socket connectto;
')
@@ -1422,24 +1432,6 @@
+')
+
+
-+########################################
-+## <summary>
-+## signal XDM X servers
-+## </summary>
-+## <param name="domain">
-+## <summary>
-+## Domain to not audit
-+## </summary>
-+## </param>
-+#
-+interface(`xserver_signal_xdm_xserver',`
-+ gen_require(`
-+ type xdm_xserver_t;
-+ ')
-+
-+ allow $1 xdm_xserver_t:process signal;
-+')
-+
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/system/hostname.te serefpolicy-2.3.13/policy/modules/system/hostname.te
--- nsaserefpolicy/policy/modules/system/hostname.te 2006-08-29 09:00:29.000000000 -0400
+++ serefpolicy-2.3.13/policy/modules/system/hostname.te 2006-09-06 13:18:45.000000000 -0400
- Previous message (by thread): rpms/pam_pkcs11/devel pam_pkcs11-0.5.3-l10n.patch, NONE, 1.1 pam_pkcs11-0.5.3-nss.patch, 1.2, 1.3 pam_pkcs11-0.5.3-ocsp.patch, 1.2, 1.3 pam_pkcs11.spec, 1.15, 1.16 rh_pam_pkcs11.conf, 1.5, 1.6
- Next message (by thread): rpms/mkinitrd/devel sources,1.159,1.160
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-cvs-commits
mailing list