rpms/frr
5
0
Fork 0
Code Issues Pull Requests Releases Activity

Resolves: RHEL-38834 - Missing selinux rules for .history_frr file for FRR

Browse Source
This commit is contained in:
Michal Ruprich 2024-05-27 16:43:33 +02:00
parent 69652b9863
commit 832ce93ff8
3 changed files with 26 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
frr.if
View File

@ -212,3 +212,23 @@ ifndef(`sysnet_read_ifconfig_run_files',`
read_lnk_files_pattern($1, ifconfig_var_run_t, ifconfig_var_run_t)
')
')
########################################
## <summary>
## setattr admin_home_t files
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
ifndef(`userdom_setattr_admin_files',`
interface(`userdom_setattr_admin_files',`
gen_require(`
type admin_home_t;
')
allow $1 admin_home_t:file setattr;
')
')

5
frr.spec
View File

@ -9,7 +9,7 @@
Name: frr
Version: 9.1
Release: 6%{?dist}
Release: 7%{?dist}
Summary: Routing daemon
License: GPL-2.0-or-later AND ISC AND LGPL-2.0-or-later AND BSD-2-Clause AND BSD-3-Clause AND (GPL-2.0-or-later OR ISC) AND MIT
URL: http://www.frrouting.org
@ -278,6 +278,9 @@ rm tests/lib/*grpc*
%endif
%changelog
* Mon May 27 2024 Michal Ruprich <mruprich@redhat.com> - 9.1-7
- Resolves: RHEL-38834 - Missing selinux rules for .history_frr file for FRR
* Thu Apr 18 2024 Michal Ruprich <mruprich@redhat.com> - 9.1-6
- Resolves: RHEL-32128 - infinite loop

2
frr.te
View File

@ -122,4 +122,6 @@ optional_policy(`
optional_policy(`
userdom_admin_home_dir_filetrans(frr_t, frr_conf_t, file, ".history_frr")
userdom_inherit_append_admin_home_files(frr_t, frr_conf_t, file, ".history_frr")
userdom_setattr_admin_files(frr_t, frr_conf_t, file, ".history_frr")
')