rpms/selinux-policy/devel policy-20060104.patch, 1.14, 1.15 selinux-policy.spec, 1.85, 1.86

fedora-cvs-commits at redhat.com fedora-cvs-commits at redhat.com
Tue Jan 17 20:02:59 UTC 2006 

Author: dwalsh

Update of /cvs/dist/rpms/selinux-policy/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv10814

Modified Files:
	policy-20060104.patch selinux-policy.spec 
Log Message:
* Tue Jan 17 2006 Dan Walsh <dwalsh at redhat.com> 2.1.12-2
- Update to upstream
- Add rules to allow rpcd to work with unlabeled_networks.


policy-20060104.patch:
 Makefile                             |    2 +-
 policy/modules/apps/wine.fc          |    2 ++
 policy/modules/apps/wine.if          |   23 +++++++++++++++++++++++
 policy/modules/apps/wine.te          |   27 +++++++++++++++++++++++++++
 policy/modules/kernel/kernel.if      |    1 +
 policy/modules/services/dovecot.te   |    1 +
 policy/modules/services/hal.te       |    3 +++
 policy/modules/services/rpc.te       |    1 +
 policy/modules/system/selinuxutil.te |    1 +
 policy/users                         |    8 +++++---
 10 files changed, 65 insertions(+), 4 deletions(-)

Index: policy-20060104.patch
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy/devel/policy-20060104.patch,v
retrieving revision 1.14
retrieving revision 1.15
diff -u -r1.14 -r1.15
--- policy-20060104.patch	17 Jan 2006 19:40:15 -0000	1.14
+++ policy-20060104.patch	17 Jan 2006 20:02:54 -0000	1.15
@@ -85,17 +85,6 @@
  ')
  
  ################################################################################
-diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/kernel/mls.te serefpolicy-2.1.12/policy/modules/kernel/mls.te
---- nsaserefpolicy/policy/modules/kernel/mls.te	2006-01-17 13:22:13.000000000 -0500
-+++ serefpolicy-2.1.12/policy/modules/kernel/mls.te	2006-01-17 14:23:22.000000000 -0500
-@@ -83,6 +83,7 @@
- # these might be targeted_policy only
- range_transition unconfined_t su_exec_t s0 - s0:c0.c255;
- range_transition unconfined_t initrc_exec_t s0;
-+range_transition unconfined_t ping_exec_t s0;
- ')
- 
- ifdef(`enable_mls',`
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/dovecot.te serefpolicy-2.1.12/policy/modules/services/dovecot.te
 --- nsaserefpolicy/policy/modules/services/dovecot.te	2006-01-13 17:06:05.000000000 -0500
 +++ serefpolicy-2.1.12/policy/modules/services/dovecot.te	2006-01-17 14:23:22.000000000 -0500
@@ -122,6 +111,17 @@
  bootloader_getattr_boot_dir(hald_t)
  
  corecmd_exec_bin(hald_t)
+diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/rpc.te serefpolicy-2.1.12/policy/modules/services/rpc.te
+--- nsaserefpolicy/policy/modules/services/rpc.te	2006-01-13 17:06:07.000000000 -0500
++++ serefpolicy-2.1.12/policy/modules/services/rpc.te	2006-01-17 14:57:16.000000000 -0500
+@@ -48,6 +48,7 @@
+ kernel_search_network_state(rpcd_t) 
+ # for rpc.rquotad
+ kernel_read_sysctl(rpcd_t)  
++kernel_sendrecv_unlabeled_association(rpcd_t)  
+ 
+ corenet_udp_bind_generic_port(rpcd_t)
+ corenet_udp_bind_reserved_port(rpcd_t)
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/system/selinuxutil.te serefpolicy-2.1.12/policy/modules/system/selinuxutil.te
 --- nsaserefpolicy/policy/modules/system/selinuxutil.te	2006-01-17 13:22:14.000000000 -0500
 +++ serefpolicy-2.1.12/policy/modules/system/selinuxutil.te	2006-01-17 14:23:22.000000000 -0500


Index: selinux-policy.spec
===================================================================
RCS file: /cvs/dist/rpms/selinux-policy/devel/selinux-policy.spec,v
retrieving revision 1.85
retrieving revision 1.86
diff -u -r1.85 -r1.86
--- selinux-policy.spec	17 Jan 2006 19:40:15 -0000	1.85
+++ selinux-policy.spec	17 Jan 2006 20:02:54 -0000	1.86
@@ -7,7 +7,7 @@
 Summary: SELinux policy configuration
 Name: selinux-policy
 Version: 2.1.12
-Release: 1
+Release: 2
 License: GPL
 Group: System Environment/Base
 Source: serefpolicy-%{version}.tgz
@@ -262,8 +262,9 @@
 %endif
 
 %changelog
-* Tue Jan 17 2006 Dan Walsh <dwalsh at redhat.com> 2.1.12-1
+* Tue Jan 17 2006 Dan Walsh <dwalsh at redhat.com> 2.1.12-2
 - Update to upstream
+- Add rules to allow rpcd to work with unlabeled_networks.
 
 * Sat Jan 14 2006 Dan Walsh <dwalsh at redhat.com> 2.1.11-1
 - Update to upstream

More information about the fedora-cvs-commits mailing list