rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity

+* Tue Aug 7 2012 Miroslav Grepl <mgrepl@redhat.com> 3.11.1-3

Browse Source 
+- Add role rules for realmd, sambagui
This commit is contained in:
Miroslav Grepl 2012-08-07 17:16:15 +02:00
parent 711b0e2035
commit e88478c88d
2 changed files with 12 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
policy_contrib-rawhide.patch
View File

@ -47944,10 +47944,10 @@ index 0000000..48ea717
+') +')
diff --git a/realmd.te b/realmd.te diff --git a/realmd.te b/realmd.te
new file mode 100644 new file mode 100644
index 0000000..314e17e index 0000000..3f5f701
--- /dev/null --- /dev/null
+++ b/realmd.te +++ b/realmd.te
@@ -0,0 +1,44 @@ @@ -0,0 +1,45 @@
+policy_module(realmd, 1.0.0) +policy_module(realmd, 1.0.0)
+ +
+######################################## +########################################
@ -47958,6 +47958,7 @@ index 0000000..314e17e
+type realmd_t; +type realmd_t;
+type realmd_exec_t; +type realmd_exec_t;
+application_domain(realmd_t, realmd_exec_t) +application_domain(realmd_t, realmd_exec_t)
+role system_r types realmd_t;
+ +
+######################################## +########################################
+# +#
@ -52467,19 +52468,20 @@ index 905883f..564240d 100644
+ can_exec(smbd_t, samba_unconfined_script_exec_t) + can_exec(smbd_t, samba_unconfined_script_exec_t)
') ')
diff --git a/sambagui.te b/sambagui.te diff --git a/sambagui.te b/sambagui.te
index 1898dbd..43fcb73 100644 index 1898dbd..eec2a5a 100644
--- a/sambagui.te --- a/sambagui.te
+++ b/sambagui.te +++ b/sambagui.te
@@ -7,7 +7,7 @@ policy_module(sambagui, 1.1.0) @@ -7,7 +7,8 @@ policy_module(sambagui, 1.1.0)
type sambagui_t; type sambagui_t;
type sambagui_exec_t; type sambagui_exec_t;
-dbus_system_domain(sambagui_t, sambagui_exec_t) -dbus_system_domain(sambagui_t, sambagui_exec_t)
+application_domain(sambagui_t, sambagui_exec_t) +application_domain(sambagui_t, sambagui_exec_t)
+role system_r types sambagui_t;
######################################## ########################################
# #
@@ -27,21 +27,30 @@ corecmd_exec_bin(sambagui_t) @@ -27,21 +28,30 @@ corecmd_exec_bin(sambagui_t)
dev_dontaudit_read_urand(sambagui_t) dev_dontaudit_read_urand(sambagui_t)
@ -52511,7 +52513,7 @@ index 1898dbd..43fcb73 100644
nscd_dontaudit_search_pid(sambagui_t) nscd_dontaudit_search_pid(sambagui_t)
') ')
@@ -56,6 +65,7 @@ optional_policy(` @@ -56,6 +66,7 @@ optional_policy(`
samba_manage_var_files(sambagui_t) samba_manage_var_files(sambagui_t)
samba_read_secrets(sambagui_t) samba_read_secrets(sambagui_t)
samba_initrc_domtrans(sambagui_t) samba_initrc_domtrans(sambagui_t)

5
selinux-policy.spec
View File

@ -19,7 +19,7 @@
Summary: SELinux policy configuration Summary: SELinux policy configuration
Name: selinux-policy Name: selinux-policy
Version: 3.11.1 Version: 3.11.1
Release: 2%{?dist} Release: 3%{?dist}
License: GPLv2+ License: GPLv2+
Group: System Environment/Base Group: System Environment/Base
Source: serefpolicy-%{version}.tgz Source: serefpolicy-%{version}.tgz
@ -491,6 +491,9 @@ SELinux Reference policy mls base module.
%endif %endif
%changelog %changelog
* Tue Aug 7 2012 Miroslav Grepl <mgrepl@redhat.com> 3.11.1-3
- Add role rules for realmd, sambagui
* Tue Aug 7 2012 Miroslav Grepl <mgrepl@redhat.com> 3.11.1-2 * Tue Aug 7 2012 Miroslav Grepl <mgrepl@redhat.com> 3.11.1-2
- Add new type selinux_login_config_t for /etc/selinux/<type>/logins/ - Add new type selinux_login_config_t for /etc/selinux/<type>/logins/
- Additional fixes for seutil_manage_module_store() - Additional fixes for seutil_manage_module_store()