SELinux policy configuration
Go to file
Zdenek Pytela 534ee173e7 * Thu May 25 2023 Zdenek Pytela <zpytela@redhat.com> - 3.14.3-121
- Update pkcsslotd policy for sandboxing 2/2
Resolves: rhbz#2208162
- Update pkcsslotd policy for sandboxing 1/2
Resolves: rhbz#2208162
- Allow abrt_t read kernel persistent storage files
Resolves: rhbz#2207914
- Add allow rules for lttng-sessiond domain
Resolves: rhbz#2203509
- Allow rpcd_lsad setcap and use generic ptys
Resolves: rhbz#2107106
- Allow samba-dcerpcd connect to systemd_machined over a unix socket
Resolves: rhbz#2107106
- Dontaudit targetd search httpd config dirs
Resolves: rhbz#2203720
2023-05-25 21:29:12 +02:00
.fmf Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
plans Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
.gitignore * Thu May 25 2023 Zdenek Pytela <zpytela@redhat.com> - 3.14.3-121 2023-05-25 21:29:12 +02:00
booleans-minimum.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
booleans-mls.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
booleans-targeted.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
booleans.subs_dist Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
COPYING Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
customizable_types Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
file_contexts.subs_dist Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
gating.yaml Bring gating.yaml over from Brew dist-git 2023-03-10 11:25:41 -08:00
make-rhat-patches.sh Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
Makefile Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
Makefile.devel Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
modules-minimum.conf Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
modules-mls-base.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
modules-mls-contrib.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
modules-targeted-base.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
modules-targeted-contrib.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
modules-targeted.conf Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
permissivedomains.cil Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
README Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
rpm.macros Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
securetty_types-minimum Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
securetty_types-mls Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
securetty_types-targeted Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
selinux-factory-reset Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
selinux-factory-reset@.service Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
selinux-policy.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
selinux-policy.spec * Thu May 25 2023 Zdenek Pytela <zpytela@redhat.com> - 3.14.3-121 2023-05-25 21:29:12 +02:00
setrans-minimum.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
setrans-mls.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
setrans-targeted.conf Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
seusers Synchronize the repo content with the previous state 2023-04-13 21:02:31 +02:00
sources * Thu May 25 2023 Zdenek Pytela <zpytela@redhat.com> - 3.14.3-121 2023-05-25 21:29:12 +02:00
users-minimum Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
users-mls Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00
users-targeted Auto sync2gitlab import of selinux-policy-3.14.3-95.el8.src.rpm 2022-05-26 14:23:57 -04:00

## Build process

1. clone [SELinux/selinux-policy](https://gitlab.cee.redhat.com/SELinux/selinux-policy) repository
	
		$ cd ~/devel/github
		$ git clone git@gitlab.cee.redhat.com:SELinux/selinux-policy.git
		$ cd selinux-policy

2. create, backport, cherry-pick needed changes to a particular branch and push them

3. clone **selinux-policy** dist-git repository

		$ cd ~/devel/dist-git
		$ rhpkg clone selinux-policy 
		$ cd selinux-policy

4. Download the latest snaphots from selinux-policy and selinux-policy-contrib github repositories

        $ ./make-rhat-patches.sh

5. add changes to the dist-git repository, bump release, create a changelog entry, commit and push
6. build the package
	
         $ rhpkg build