rpm/selinux-policy
SHA256
1
0
Fork 0
forked from pool/selinux-policy
Code Pull Requests Activity
214 Commits 2 Branches 0 Tags 6.9 MiB
b602490be5
Commit Graph

214 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Dominique Leuenberger
4b21d123cc Accepting request 1058006 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1058006
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=42
 2023-01-14 19:30:42 +00:00
Johannes Segitz
5b345f822c Accepting request 1058003 from home:jsegitz:branches:security:SELinux 
- Update fix_container.patch to allow privileged containers to use
  localectl (bsc#1207077)

OBS-URL: https://build.opensuse.org/request/show/1058003
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=169
 2023-01-12 13:57:34 +00:00
Johannes Segitz
8beb2b3f3b Accepting request 1057912 from home:jsegitz:branches:security:SELinux 
- Add fix_container.patch to allow privileged containers to use
  timedatectl (bsc#1207054)

OBS-URL: https://build.opensuse.org/request/show/1057912
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=168
 2023-01-12 07:15:59 +00:00
Dominique Leuenberger
69818d8fec Accepting request 1043279 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1043279
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=41
 2022-12-17 19:36:10 +00:00
Johannes Segitz
411b89e9ec Accepting request 1043182 from home:cahu:branches:security:SELinux 
- Added fix_ipsec.patch: Allow AF_ALG socket creation for strongswan
  (bnc#1206445)

OBS-URL: https://build.opensuse.org/request/show/1043182
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=166
 2022-12-16 07:55:17 +00:00
Dominique Leuenberger
23eaec9c85 Accepting request 1043074 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1043074
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=40
 2022-12-15 18:24:39 +00:00
Johannes Segitz
60d1d0d29a Accepting request 1042962 from home:cahu:branches:security:SELinux 
- Added policy for wicked scripts under /etc/sysconfig/network/scripts
  (bnc#1205770)

OBS-URL: https://build.opensuse.org/request/show/1042962
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=164
 2022-12-15 09:32:29 +00:00
Johannes Segitz
48d925e070 Accepting request 1042948 from home:jsegitz:branches:security:SELinux 
- Add fix_sendmail.patch 
  * fix context of custom sendmail startup helper
  * fix context of /var/run/sendmail and add necessary rules to manage
    content in there

OBS-URL: https://build.opensuse.org/request/show/1042948
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=163
 2022-12-14 15:43:48 +00:00
Dominique Leuenberger
0fe33074d8 Accepting request 1042580 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1042580
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=39
 2022-12-14 13:10:41 +00:00
Johannes Segitz
9deff280f8 Accepting request 1042579 from home:jsegitz:branches:security:SELinux 
- Updated fix_networkmanager.patch to fixe labeling of nm-dispatcher and
  nm-priv-helper until the packaging is adjusted (bsc#1206355)
- Update fix_chronyd.patch to allow  sendto towards
  NetworkManager_dispatcher_custom_t. Added new interface
  networkmanager_dispatcher_custom_dgram_send for this (bsc#1206357)
- Update fix_dbus.patch to allow dbus to watch lib directories (bsc#1205895)

- Updated fix_networkmanager.patch to allow NetworkManager to watch
  net_conf_t (bsc#1206109)

OBS-URL: https://build.opensuse.org/request/show/1042579
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=161
 2022-12-13 09:20:16 +00:00
Dominique Leuenberger
d47fb333dd Accepting request 1039252 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1039252
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=38
 2022-12-02 12:12:00 +00:00
Johannes Segitz
f46ad9aabe Accepting request 1039192 from home:fbonazzi:branches:security:SELinux 
- Add fix_irqbalance.patch: support netlink socket operations (bsc#1205434)
- Drop fix_irqbalance.patch: superseded by upstream

OBS-URL: https://build.opensuse.org/request/show/1039192
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=159
 2022-12-01 07:07:05 +00:00
Dominique Leuenberger
925431146c Accepting request 1038037 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1038037
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=37
 2022-11-25 13:08:10 +00:00
Johannes Segitz
7cbab402c1 Accepting request 1037928 from home:cahu:branches:security:SELinux 
- fix_sysnetwork.patch: firewalld uses /etc/sysconfig/network/ for
  network interface definition instead of /etc/sysconfig/network-scripts/,
  modified sysnetwork.fc to reflect that (bsc#1205580).

OBS-URL: https://build.opensuse.org/request/show/1037928
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=157
 2022-11-25 08:00:09 +00:00
Dominique Leuenberger
fd1fb802ae Accepting request 1035583 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1035583
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=36
 2022-11-15 12:18:13 +00:00
Johannes Segitz
b66c2b8ce6 Accepting request 1035580 from home:jsegitz:branches:security:SELinux 
- Update to version 20221019. Refreshed:
  * distro_suse_to_distro_redhat.patch
  * fix_apache.patch
  * fix_chronyd.patch
  * fix_cron.patch
  * fix_init.patch
  * fix_kernel_sysctl.patch
  * fix_networkmanager.patch
  * fix_rpm.patch
  * fix_sysnetwork.patch
  * fix_systemd.patch
  * fix_systemd_watch.patch
  * fix_unconfined.patch
  * fix_unconfineduser.patch
  * fix_unprivuser.patch
  * fix_xserver.patch
- Dropped fix_cockpit.patch as this is now packaged with cockpit itself
- Remove the ipa module, freeip ships their own module
- Added fix_alsa.patch to allow reading of config files in home directories
- Extended fix_networkmanager.patch and fix_postfix.patch to account
  for SUSE systems
- Added dontaudit_interface_kmod_tmpfs.patch to prevent AVCs when startproc
  queries the running processes
- Updated fix_snapper.patch to allow snapper to talk to rpm via dbus

OBS-URL: https://build.opensuse.org/request/show/1035580
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=155
 2022-11-14 08:27:42 +00:00
Dominique Leuenberger
58c16a1f96 Accepting request 1030696 from openSUSE:Factory 
https://bugzilla.suse.com/show_bug.cgi?id=1204605

OBS-URL: https://build.opensuse.org/request/show/1030696
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=35
 2022-10-24 09:13:01 +00:00
OBS User buildservice-autocommit
124e8026e4 Updating link to change in openSUSE:Factory/selinux-policy revision 35 
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=74bbc58f85e33fdb068953a18504e591
 2022-10-24 09:13:01 +00:00
Dominique Leuenberger
69aab159dc Accepting request 1030696 from openSUSE:Factory 
https://bugzilla.suse.com/show_bug.cgi?id=1204605

OBS-URL: https://build.opensuse.org/request/show/1030696
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=35
 2022-10-24 09:13:01 +00:00
Dominique Leuenberger
83a39a4ddd Accepting request 1030152 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1030152
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=34
 2022-10-22 12:13:02 +00:00
Dominique Leuenberger
c77d62d06e Accepting request 1030152 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1030152
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=34
 2022-10-22 12:13:02 +00:00
Johannes Segitz
71b9302857 Accepting request 1030151 from home:jsegitz:branches:security:SELinux 
- Update to version 20221019. Refreshed:
  * distro_suse_to_distro_redhat.patch
  * fix_apache.patch
  * fix_chronyd.patch
  * fix_cron.patch
  * fix_init.patch
  * fix_kernel_sysctl.patch
  * fix_networkmanager.patch
  * fix_rpm.patch
  * fix_sysnetwork.patch
  * fix_systemd.patch
  * fix_systemd_watch.patch
  * fix_unconfined.patch
  * fix_unconfineduser.patch
  * fix_unprivuser.patch
  * fix_xserver.patch
- Dropped fix_cockpit.patch as this is now packaged with cockpit itself
- Remove the ipa module, freeip ships their own module
- Added fix_alsa.patch to allow reading of config files in home directories
- Extended fix_networkmanager.patch and fix_postfix.patch to account
  for SUSE systems
- Added dontaudit_interface_kmod_tmpfs.patch to prevent AVCs when startproc
  queries the running processes
- Updated fix_snapper.patch to allow snapper to talk to rpm via dbus

OBS-URL: https://build.opensuse.org/request/show/1030151
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=153
 2022-10-20 12:00:31 +00:00
Fabian Vogt
d9e31acb09 Accepting request 1008716 from security:SELinux 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/1008716
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=33
 2022-10-10 16:43:41 +00:00
Fabian Vogt
6580811b24 Accepting request 1008716 from security:SELinux 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/1008716
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=33
 2022-10-10 16:43:41 +00:00
Richard Brown
745ca40e7d Accepting request 1007016 from security:SELinux 
- Update fix_networkmanager.patch to ensure NetworkManager chrony
  dispatcher is properly labled and update fix_chronyd.patch to ensure
  chrony helper script has proper label to be used by NetworkManager.
  Also allow NetworkManager_dispatcher_custom_t to query systemd status
  (bsc#1203824)

- Update fix_xserver.patch to add greetd support (bsc#1198559)

- Revamped rtorrent module

OBS-URL: https://build.opensuse.org/request/show/1007016
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=32
 2022-09-30 15:57:06 +00:00
Richard Brown
3fb2472fe5 Accepting request 1007016 from security:SELinux 
- Update fix_networkmanager.patch to ensure NetworkManager chrony
  dispatcher is properly labled and update fix_chronyd.patch to ensure
  chrony helper script has proper label to be used by NetworkManager.
  Also allow NetworkManager_dispatcher_custom_t to query systemd status
  (bsc#1203824)

- Update fix_xserver.patch to add greetd support (bsc#1198559)

- Revamped rtorrent module

OBS-URL: https://build.opensuse.org/request/show/1007016
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=32
 2022-09-30 15:57:06 +00:00
Johannes Segitz
46df3a4a90 Accepting request 1007183 from home:jsegitz:branches:security:SELinux 
- Updated quilt couldn't unpack tarball. This will cause ongoing issues
  so drop the sed statement in the %prep section and add 
  distro_suse_to_distro_redhat.patch to add the necessary changes
  via a patch

OBS-URL: https://build.opensuse.org/request/show/1007183
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=150
 2022-09-30 08:11:19 +00:00
Johannes Segitz
7954ef729d OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=149 2022-09-29 15:53:47 +00:00
Johannes Segitz
e785903b85 Accepting request 1007013 from home:jsegitz:branches:security:SELinux 
chrony helper script has proper label to be used by NetworkManager.
  Also allow NetworkManager_dispatcher_custom_t to query systemd status

OBS-URL: https://build.opensuse.org/request/show/1007013
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=148
 2022-09-29 15:51:37 +00:00
Johannes Segitz
d25433c6c5 Accepting request 1006965 from home:jsegitz:branches:security:SELinux 
- Update fix_networkmanager.patch to ensure NetworkManager chrony
  dispatcher is properly labled and update fix_chronyd.patch to ensure
  chrony helper script has proper label to be used by NetworkManager
  (bsc#1203824)

>>>>>>> ./selinux-policy.changes.new
- Revamped rtorrent module

OBS-URL: https://build.opensuse.org/request/show/1006965
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=147
 2022-09-29 14:06:49 +00:00
Johannes Segitz
31bb56f011 Accepting request 1006413 from home:fbonazzi:branches:security:SELinux 
- Update fix_xserver.patch to add greetd support (bsc#1198559)

OBS-URL: https://build.opensuse.org/request/show/1006413
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=146
 2022-09-28 07:58:24 +00:00
Dominique Leuenberger
f9338cb4f6 Accepting request 1000830 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1000830
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=31
 2022-09-03 21:18:36 +00:00
Dominique Leuenberger
c7c129e00f Accepting request 1000830 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/1000830
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=31
 2022-09-03 21:18:36 +00:00
Johannes Segitz
f2882ce2e3 Accepting request 999336 from home:kukuk:branches:security:SELinux 
- Move SUSE directory from manual page section to html docu

OBS-URL: https://build.opensuse.org/request/show/999336
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=144
 2022-09-02 07:11:53 +00:00
Dominique Leuenberger
e1641c758c Accepting request 999231 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/999231
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=30
 2022-08-25 13:09:16 +00:00
Dominique Leuenberger
0e77232f80 Accepting request 999231 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/999231
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=30
 2022-08-25 13:09:16 +00:00
Filippo Bonazzi
33f33589cc Accepting request 999189 from home:djz88:branches:security:SELinux 
Corrected wrong bnc in changelog (correct is bnc#1201015)

OBS-URL: https://build.opensuse.org/request/show/999189
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=142
 2022-08-25 10:10:46 +00:00
Richard Brown
e752fcf067 Accepting request 991558 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/991558
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=29
 2022-07-29 14:47:11 +00:00
Richard Brown
954309bfb4 Accepting request 991558 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/991558
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=29
 2022-07-29 14:47:11 +00:00
Johannes Segitz
bb74e8e79e Accepting request 991528 from home:djz88:branches:security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/991528
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=140
 2022-07-28 13:16:02 +00:00
Johannes Segitz
2c8b63a3f9 Accepting request 991423 from home:cahu:branches:security:SELinux 
- fix_networkmanager.patch: Allow NetworkManager_dispatcher_tlp_t 
  and NetworkManager_dispatcher_custom_t to access nscd socket 
  (bsc#1201741)

OBS-URL: https://build.opensuse.org/request/show/991423
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=139
 2022-07-27 15:24:55 +00:00
Richard Brown
9ba19293f6 Accepting request 989143 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/989143
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=28
 2022-07-18 16:32:44 +00:00
Richard Brown
9a0c018a4e Accepting request 989143 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/989143
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=28
 2022-07-18 16:32:44 +00:00
Johannes Segitz
c45601e60c Accepting request 989142 from home:jsegitz:branches:security:SELinux 
- Update to version 20220714. Refreshed:
  * fix_init.patch
  * fix_systemd_watch.patch

OBS-URL: https://build.opensuse.org/request/show/989142
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=137
 2022-07-14 11:30:19 +00:00
Dominique Leuenberger
49901ddf56 Accepting request 988936 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/988936
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=27
 2022-07-13 12:55:54 +00:00
Dominique Leuenberger
ffb5e7da5e Accepting request 988936 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/988936
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=27
 2022-07-13 12:55:54 +00:00
Johannes Segitz
08dba4d639 Accepting request 988934 from home:jsegitz:branches:security:SELinux 
- Update fix_systemd.patch to add cap sys_admin and kernel_dgram_send for
  systemd_gpt_generator_t (bsc#1200911)

OBS-URL: https://build.opensuse.org/request/show/988934
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=135
 2022-07-13 08:54:50 +00:00
Johannes Segitz
80bdcc2619 Accepting request 988924 from home:jsegitz:branches:security:SELinux 
- Update fix_systemd.patch to add sys_admin systemd_gpt_generator_t
  (bsc#1200911)

- postfix: Label PID files and some helpers correctly (bsc#1197242)

- Add fix_userdomain.patch to dontaudit UDP rpc ports (bsc#1193984)

OBS-URL: https://build.opensuse.org/request/show/988924
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=134
 2022-07-13 08:15:29 +00:00
Dominique Leuenberger
c9dc623f03 Accepting request 984856 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/984856
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=26
 2022-06-25 08:23:52 +00:00
Dominique Leuenberger
c7da6b80c0 Accepting request 984856 from security:SELinux 
OBS-URL: https://build.opensuse.org/request/show/984856
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/selinux-policy?expand=0&rev=26
 2022-06-25 08:23:52 +00:00