rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity

* Fri Mar 26 2021 Zdenek Pytela <zpytela@redhat.com> - 3.14.8-8

Browse Source 
- Allow arpwatch_t create netlink generic socket
- Allow postgrey read network state
- Add watch_mount_dirs_pattern file pattern
- Allow bluetooth_t dbus chat with fwupd_t
- Allow xdm_t watch accountsd lib directories
- Add additional interfaces for watching /boot
- Allow sssd_t get attributes of tmpfs filesystems
- Allow local_login_t get attributes of tmpfs filesystems
- Dontaudit domain the fowner capability
- Extend fs_manage_nfsd_fs() to allow managing dirs as well
- Allow spice-vdagentd watch systemd-logind session dirs
This commit is contained in:
Zdenek Pytela 2021-03-26 16:10:54 +01:00
parent 7e06a74914
commit 6ff3284cb2
2 changed files with 17 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
selinux-policy.spec
View File

@ -1,6 +1,6 @@
# github repo with selinux-policy sources # github repo with selinux-policy sources
%global giturl https://github.com/fedora-selinux/selinux-policy %global giturl https://github.com/fedora-selinux/selinux-policy
%global commit d552a9bea539b67ebe404601074887a8c48a3f3b %global commit 485578ca5fa9c5c4613a5e2af687d6ffba9785ab
%global shortcommit %(c=%{commit}; echo ${c:0:7}) %global shortcommit %(c=%{commit}; echo ${c:0:7})
%define distro redhat %define distro redhat
@ -24,7 +24,7 @@
Summary: SELinux policy configuration Summary: SELinux policy configuration
Name: selinux-policy Name: selinux-policy
Version: 3.14.8 Version: 3.14.8
Release: 7%{?dist} Release: 8%{?dist}
License: GPLv2+ License: GPLv2+
Source: %{giturl}/archive/%{commit}/%{name}-%{shortcommit}.tar.gz Source: %{giturl}/archive/%{commit}/%{name}-%{shortcommit}.tar.gz
Source1: modules-targeted-base.conf Source1: modules-targeted-base.conf
@ -796,6 +796,19 @@ exit 0
%endif %endif
%changelog %changelog
* Fri Mar 26 2021 Zdenek Pytela <zpytela@redhat.com> - 3.14.8-8
- Allow arpwatch_t create netlink generic socket
- Allow postgrey read network state
- Add watch_mount_dirs_pattern file pattern
- Allow bluetooth_t dbus chat with fwupd_t
- Allow xdm_t watch accountsd lib directories
- Add additional interfaces for watching /boot
- Allow sssd_t get attributes of tmpfs filesystems
- Allow local_login_t get attributes of tmpfs filesystems
- Dontaudit domain the fowner capability
- Extend fs_manage_nfsd_fs() to allow managing dirs as well
- Allow spice-vdagentd watch systemd-logind session dirs
* Fri Mar 19 2021 Zdenek Pytela <zpytela@redhat.com> - 3.14.8-7 * Fri Mar 19 2021 Zdenek Pytela <zpytela@redhat.com> - 3.14.8-7
- Allow xdm_t watch systemd-logind session dirs - Allow xdm_t watch systemd-logind session dirs
- Allow xdm_t transition to system_dbusd_t - Allow xdm_t transition to system_dbusd_t

4
sources
View File

@ -1,3 +1,3 @@
SHA512 (selinux-policy-d552a9b.tar.gz) = 0209126192da510aca892778d55e3f8f7b51e94c7f574beb2fca6d98707cd474cc98499664e92139fec455b211f613454b8b37d2a6c2694c3aef0f18bcb434cc SHA512 (selinux-policy-485578c.tar.gz) = 73eecdc99968676d8db4357c7b6fb77a929d7afba84725481185acb925ba2619a47cab900c62ff5e0d9bd016e8a3de7c38ebb5284f43a8cb00b6409976de9531
SHA512 (container-selinux.tgz) = 0e4d2aea5a826cc1774923fa7a3fa359178d5dc858ddec4df26d6d4881bc2bb92d95a30e6b9a747407d815be330e0d12cfa4b2396c0b63bae47efc7a1069c0d6
SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4 SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4
SHA512 (container-selinux.tgz) = c7678e9011080093348c6ba9e6f7dcda6e0cf2a5c7e58b86734f6ba1b22acbae158a9e649403588215c07a1012a3bcb80a215aefb947b994fd8dea4e6e4c6d13