From 23fa4eb394acab2f2492d5e8a5f6962e82defc4d Mon Sep 17 00:00:00 2001 From: Zdenek Pytela Date: Thu, 21 Apr 2022 09:24:57 +0200 Subject: [PATCH] * Thu Apr 21 2022 Zdenek Pytela - 36.7-3 - Add support for nm-dispatcher tlp-rdw scripts - Update github actions to satisfy git 2.36 stricter rules - New policy for stalld - Allow colord read generic files in /var/lib - Allow xdm mounton user temporary socket files - Allow systemd-gpt-auto-generator create and use netlink_kobject_uevent_socket - Allow sssd domtrans to pkcs_slotd_t - Allow keepalived setsched and sys_nice - Allow xdm map generic files in /var/lib - Allow xdm read generic symbolic links in /var/lib - Allow pppd create a file in the locks directory - Add file map permission to lpd_manage_spool() interface - Allow system dbus daemon watch generic directories in /var/lib - Allow pcscd the sys_ptrace userns capability - Add the corecmd_watch_bin_dirs() interface --- selinux-policy.spec | 19 ++++++++++++++++++- sources | 4 ++-- 2 files changed, 20 insertions(+), 3 deletions(-) diff --git a/selinux-policy.spec b/selinux-policy.spec index 628960e4..62bc716a 100644 --- a/selinux-policy.spec +++ b/selinux-policy.spec @@ -1,6 +1,6 @@ # github repo with selinux-policy sources %global giturl https://github.com/fedora-selinux/selinux-policy -%global commit c86d943538f907c2e6b20ffda0a8d2b5b5bd2e34 +%global commit 6dd0ca5b26b8d48d3fdb90333f27402a32624d83 %global shortcommit %(c=%{commit}; echo ${c:0:7}) %define distro redhat @@ -813,6 +813,23 @@ exit 0 %endif %changelog +* Thu Apr 21 2022 Zdenek Pytela - 36.7-3 +- Add support for nm-dispatcher tlp-rdw scripts +- Update github actions to satisfy git 2.36 stricter rules +- New policy for stalld +- Allow colord read generic files in /var/lib +- Allow xdm mounton user temporary socket files +- Allow systemd-gpt-auto-generator create and use netlink_kobject_uevent_socket +- Allow sssd domtrans to pkcs_slotd_t +- Allow keepalived setsched and sys_nice +- Allow xdm map generic files in /var/lib +- Allow xdm read generic symbolic links in /var/lib +- Allow pppd create a file in the locks directory +- Add file map permission to lpd_manage_spool() interface +- Allow system dbus daemon watch generic directories in /var/lib +- Allow pcscd the sys_ptrace userns capability +- Add the corecmd_watch_bin_dirs() interface + * Thu Apr 21 2022 Zdenek Pytela - 36.7-2 - Relabel explicitly some dirs in %posttrans scriptlets diff --git a/sources b/sources index 2c813d7e..a01f8c58 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (selinux-policy-c86d943.tar.gz) = db7eeef761d833ce7502b6ecdc709261cb3a60685e6853db036042c24d1fd72896c901b2ae230d20059b1e5dc5ed3bad8e26722c471b64556cfb1d074879dc84 -SHA512 (container-selinux.tgz) = 377542ab01f280b1e2526980bb933120d1339be923fc5b465a6141e7798cfc892e95c84f9a756935da53291031086148e624c07dc04729ea7b5430c611b5a3fb +SHA512 (selinux-policy-6dd0ca5.tar.gz) = bc5788bd21c743c48f07f876ad6a12d4d8dfa050b633b3eb59f612c0e1ccaf9f48be4a1615e33bc9694d5e4fc83e0f8bf72ce809f16cd77a006f684a95327a3f +SHA512 (container-selinux.tgz) = 571f12532dd5f77fc73c0de6790eabe7a7e4a7dfb050e982f02c2f616aeee21203da68b493dc41a9a981d7bc2d10f40d3ff3ffbae38da3ea6ccf43ffb55f38f5 SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4