rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity

* Fri May 06 2022 Zdenek Pytela <zpytela@redhat.com> - 37.2-1

Browse Source 
- Use the networkmanager_dispatcher_plugin attribute in allow rules
- Make a custom nm-dispatcher plugin transition
- Label port 4784/tcp and 4784/udp with bfd_multi
- Allow systemd watch and watch_reads user ptys
- Allow sblim-gatherd the kill capability
- Label more vdsm utils with virtd_exec_t
- Add ksm service to ksmtuned
- Add rhcd policy
- Dontaudit guest attempts to dbus chat with systemd domains
- Dontaudit guest attempts to dbus chat with system bus types
- Use a named transition in systemd_hwdb_manage_config()
- Add default fc specifications for patterns in /opt
- Add the files_create_etc_files() interface
- Allow nm-dispatcher console plugin create and write files in /etc
- Allow nm-dispatcher console plugin transition to the setfiles domain
- Allow more nm-dispatcher plugins append to init stream sockets
- Allow nm-dispatcher tlp plugin dbus chat with nm
- Reorder networkmanager_dispatcher_plugin_template() calls
- Allow svirt connectto virtlogd
- Allow blueman map its private memfd: files
- Allow sysadm user execute init scripts with a transition
- Allow sblim-sfcbd connect to sblim-reposd stream
- Allow keepalived_unconfined_script_t dbus chat with init
- Run restorecon with "-i" not to report errors
This commit is contained in:
Zdenek Pytela 2022-05-18 20:30:58 +02:00
parent 59a2a4bfc4
commit fccb378e9b
2 changed files with 29 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

31
selinux-policy.spec
View File

@ -1,6 +1,6 @@
# github repo with selinux-policy sources
%global giturl https://github.com/fedora-selinux/selinux-policy
%global commit e1e216b25df1bdb4eb7dbb8f73f32927ad6f3d1f
%global commit c1ceef9712d0ac2b4643a0d9187c737b3580cf73
%global shortcommit %(c=%{commit}; echo ${c:0:7})
%define distro redhat
@ -23,7 +23,7 @@
%define CHECKPOLICYVER 3.2
Summary: SELinux policy configuration
Name: selinux-policy
Version: 38.1
Version: 37.2
Release: 1%{?dist}
License: GPLv2+
Source: %{giturl}/archive/%{commit}/%{name}-%{shortcommit}.tar.gz
@ -813,8 +813,31 @@ exit 0
%endif
%changelog
* Fri May 06 2022 Zdenek Pytela <zpytela@redhat.com> - 38.1-1
- run restorecon with "-i" not to report errors
* Fri May 06 2022 Zdenek Pytela <zpytela@redhat.com> - 37.2-1
- Use the networkmanager_dispatcher_plugin attribute in allow rules
- Make a custom nm-dispatcher plugin transition
- Label port 4784/tcp and 4784/udp with bfd_multi
- Allow systemd watch and watch_reads user ptys
- Allow sblim-gatherd the kill capability
- Label more vdsm utils with virtd_exec_t
- Add ksm service to ksmtuned
- Add rhcd policy
- Dontaudit guest attempts to dbus chat with systemd domains
- Dontaudit guest attempts to dbus chat with system bus types
- Use a named transition in systemd_hwdb_manage_config()
- Add default fc specifications for patterns in /opt
- Add the files_create_etc_files() interface
- Allow nm-dispatcher console plugin create and write files in /etc
- Allow nm-dispatcher console plugin transition to the setfiles domain
- Allow more nm-dispatcher plugins append to init stream sockets
- Allow nm-dispatcher tlp plugin dbus chat with nm
- Reorder networkmanager_dispatcher_plugin_template() calls
- Allow svirt connectto virtlogd
- Allow blueman map its private memfd: files
- Allow sysadm user execute init scripts with a transition
- Allow sblim-sfcbd connect to sblim-reposd stream
- Allow keepalived_unconfined_script_t dbus chat with init
- Run restorecon with "-i" not to report errors
* Mon May 02 2022 Zdenek Pytela <zpytela@redhat.com> - 37.1-1
- Fix users for SELinux userspace 3.4

4
sources
View File

@ -1,3 +1,3 @@
SHA512 (selinux-policy-e1e216b.tar.gz) = 7da81a5cfcef8bd769335e176c9a3fe602c4c79094498e7103367bec6951053a3839ecf7a16228408ef25dfa6afc30bf2fa187eb8d254440ce001755e11df9bd
SHA512 (container-selinux.tgz) = 128329fd5d0eb3a9f7e36b3f9f420c352e1e001f5d273cb8119750f2de388ad76bb61e567d746ba1f5f35757ae5d93ccd6369bb13d65cf6059f7a20aa502b20e
SHA512 (selinux-policy-c1ceef9.tar.gz) = 840ec4642ba6c6be6c545823835b2c0a4d922781b128cae3284e3ec8d6ee8de4051e5b5e3c04b636868020aab150b59824b71466997a27d0976cef44ae0044b0
SHA512 (container-selinux.tgz) = 4e17b4d5f54fb27cb0159bdea37df5f519b989b880831d49bb60be079c0896cf3810909bd72956868fe440ef3aefb8f740ffac8f53aa803a1a29e9a6fc331ee8
SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4