rpms/selinux-policy-strict/devel policy-20050425.patch, 1.5, 1.6 selinux-policy-strict.spec, 1.293, 1.294
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Thu Apr 28 18:17:44 UTC 2005
- Previous message (by thread): rpms/kernel/FC-3 jwltest-b44-bounce-bufs.patch, NONE, 1.1.16.1 jwltest-bonding-2_6_12-rc2.patch, NONE, 1.1.10.1 jwltest-bonding-sysfs.patch, NONE, 1.1.10.1 jwltest-e1000-update-5_7_6-k2.patch, NONE, 1.1.14.1 jwltest-e1000-watchdog.patch, NONE, 1.1.14.1 jwltest-e1000-workqueue-flush.patch, NONE, 1.1.14.1 jwltest-ipw2100-1_1_0.patch, NONE, 1.1.12.1 kernel-2.6.spec, 1.815, 1.815.4.1 linux-2.6.9-module_version.patch, 1.6, 1.6.14.1
- Next message (by thread): rpms/festival/devel speech_tools-1.2.95-gcc4.patch,1.1,1.2
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: dwalsh
Update of /cvs/dist/rpms/selinux-policy-strict/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv11750
Modified Files:
policy-20050425.patch selinux-policy-strict.spec
Log Message:
* Thu Apr 28 2005 Dan Walsh <dwalsh at redhat.com> 1.23.13-6
- Allow hal to connect to self
- Fix turboprint/cups problem.
- Fixes fir i18n_input errors
policy-20050425.patch:
domains/misc/kernel.te | 4 +-
domains/program/fsadm.te | 2 -
domains/program/getty.te | 14 ++-------
domains/program/hostname.te | 1
domains/program/ifconfig.te | 2 +
domains/program/init.te | 4 +-
domains/program/initrc.te | 1
domains/program/klogd.te | 3 +
domains/program/load_policy.te | 3 -
domains/program/mount.te | 1
domains/program/unused/NetworkManager.te | 4 ++
domains/program/unused/amanda.te | 2 +
domains/program/unused/amavis.te | 7 ----
domains/program/unused/apache.te | 16 +++-------
domains/program/unused/apmd.te | 1
domains/program/unused/auditd.te | 16 ++++++++--
domains/program/unused/cardmgr.te | 4 +-
domains/program/unused/clamav.te | 2 -
domains/program/unused/consoletype.te | 13 +++-----
domains/program/unused/cups.te | 3 +
domains/program/unused/cyrus.te | 4 --
domains/program/unused/hald.te | 5 +++
domains/program/unused/hotplug.te | 8 +----
domains/program/unused/i18n_input.te | 2 +
domains/program/unused/ntpd.te | 7 ++--
domains/program/unused/portmap.te | 5 +--
domains/program/unused/samba.te | 1
domains/program/unused/snmpd.te | 2 -
domains/program/unused/squid.te | 4 --
domains/program/unused/tinydns.te | 2 -
domains/program/unused/udev.te | 8 +++--
domains/program/unused/updfstab.te | 2 +
domains/program/unused/webalizer.te | 2 -
domains/user.te | 16 +++++++++-
file_contexts/distros.fc | 1
file_contexts/program/apache.fc | 3 +
file_contexts/program/compat.fc | 17 +++++++----
file_contexts/program/crack.fc | 1
file_contexts/program/cups.fc | 1
file_contexts/program/getty.fc | 2 +
file_contexts/program/i18n_input.fc | 4 ++
file_contexts/program/lvm.fc | 1
file_contexts/program/portmap.fc | 1
file_contexts/program/traceroute.fc | 1
file_contexts/program/webalizer.fc | 2 +
file_contexts/types.fc | 8 ++++-
flask/access_vectors | 2 +
macros/base_user_macros.te | 10 +++++-
macros/core_macros.te | 5 +--
macros/global_macros.te | 22 +++++++++++++-
macros/program/cdrecord_macros.te | 2 -
macros/program/mozilla_macros.te | 2 -
macros/program/xserver_macros.te | 2 +
man/man8/httpd_selinux.8 | 6 +++
targeted/appconfig/default_contexts | 1
targeted/domains/program/compat.te | 7 ----
targeted/domains/program/crond.te | 2 -
targeted/domains/program/hotplug.te | 17 -----------
targeted/domains/program/sendmail.te | 3 +
targeted/domains/program/udev.te | 17 -----------
targeted/domains/program/xdm.te | 1
targeted/domains/unconfined.te | 12 +++++--
targeted/initial_sid_contexts | 47 -------------------------------
tunables/distro.tun | 2 -
tunables/tunable.tun | 6 +--
types/network.te | 1
66 files changed, 197 insertions(+), 183 deletions(-)
Index: policy-20050425.patch
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy-strict/devel/policy-20050425.patch,v
retrieving revision 1.5
retrieving revision 1.6
diff -u -r1.5 -r1.6
--- policy-20050425.patch 28 Apr 2005 15:00:11 -0000 1.5
+++ policy-20050425.patch 28 Apr 2005 18:17:41 -0000 1.6
@@ -417,8 +417,8 @@
allow cyrus_t mail_port_t:tcp_socket name_bind;
diff --exclude-from=exclude -N -u -r nsapolicy/domains/program/unused/hald.te policy-1.23.13/domains/program/unused/hald.te
--- nsapolicy/domains/program/unused/hald.te 2005-04-27 10:28:51.000000000 -0400
-+++ policy-1.23.13/domains/program/unused/hald.te 2005-04-25 15:18:00.000000000 -0400
-@@ -93,3 +93,7 @@
++++ policy-1.23.13/domains/program/unused/hald.te 2005-04-28 11:56:19.000000000 -0400
+@@ -93,3 +93,8 @@
ifdef(`lvm.te', `
allow hald_t lvm_control_t:chr_file r_file_perms;
')
@@ -426,6 +426,7 @@
+allow unconfined_t hald_t:dbus send_msg;
+allow hald_t unconfined_t:dbus send_msg;
+')
++allow hald_t self:unix_stream_socket connectto;
diff --exclude-from=exclude -N -u -r nsapolicy/domains/program/unused/hotplug.te policy-1.23.13/domains/program/unused/hotplug.te
--- nsapolicy/domains/program/unused/hotplug.te 2005-04-27 10:28:51.000000000 -0400
+++ policy-1.23.13/domains/program/unused/hotplug.te 2005-04-25 15:18:00.000000000 -0400
Index: selinux-policy-strict.spec
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy-strict/devel/selinux-policy-strict.spec,v
retrieving revision 1.293
retrieving revision 1.294
diff -u -r1.293 -r1.294
--- selinux-policy-strict.spec 28 Apr 2005 15:00:11 -0000 1.293
+++ selinux-policy-strict.spec 28 Apr 2005 18:17:41 -0000 1.294
@@ -11,7 +11,7 @@
Summary: SELinux %{type} policy configuration
Name: selinux-policy-%{type}
Version: 1.23.13
-Release: 5
+Release: 6
License: GPL
Group: System Environment/Base
Source: http://www.nsa.gov/selinux/archives/policy-%{version}.tgz
@@ -220,7 +220,8 @@
exit 0
%changelog
-* Thu Apr 28 2005 Dan Walsh <dwalsh at redhat.com> 1.23.13-5
+* Thu Apr 28 2005 Dan Walsh <dwalsh at redhat.com> 1.23.13-6
+- Allow hal to connect to self
- Fix turboprint/cups problem.
- Fixes fir i18n_input errors
- Previous message (by thread): rpms/kernel/FC-3 jwltest-b44-bounce-bufs.patch, NONE, 1.1.16.1 jwltest-bonding-2_6_12-rc2.patch, NONE, 1.1.10.1 jwltest-bonding-sysfs.patch, NONE, 1.1.10.1 jwltest-e1000-update-5_7_6-k2.patch, NONE, 1.1.14.1 jwltest-e1000-watchdog.patch, NONE, 1.1.14.1 jwltest-e1000-workqueue-flush.patch, NONE, 1.1.14.1 jwltest-ipw2100-1_1_0.patch, NONE, 1.1.12.1 kernel-2.6.spec, 1.815, 1.815.4.1 linux-2.6.9-module_version.patch, 1.6, 1.6.14.1
- Next message (by thread): rpms/festival/devel speech_tools-1.2.95-gcc4.patch,1.1,1.2
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-cvs-commits
mailing list