packages/selinux-policy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
90 Commits 1 Branch 0 Tags
Commit Graph

90 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
openeuler-ci-bot
eeae55a5a9
!155 allow httpd to create files in /etc/httpd 
From: @HuaxinLuGitee 
Reviewed-by: @zhujianwei001 
Signed-off-by: @zhujianwei001
 2022-06-25 09:58:44 +00:00
luhuaxin
15a5934594 allow httpd to create files in /etc/httpd 2022-06-25 15:26:17 +08:00
openeuler-ci-bot
eda5eefec9
!150 [sync] PR-148: add open permission to files_read_inherited_tmp_file 
From: @HuaxinLuGitee 
Reviewed-by: @zhujianwei001 
Signed-off-by: @zhujianwei001
 2022-04-29 01:56:24 +00:00
luhuaxin
82006bdb03 add open permission to files_read_inherited_tmp_file 2022-04-28 20:06:48 +08:00
openeuler-ci-bot
79bed1e914
!147 fix context of /usr/bin/rpmdb 
From: @lujie42 
Reviewed-by: @zhujianwei001 
Signed-off-by: @zhujianwei001
 2022-03-01 04:46:38 +00:00
lujie42
af5ba14800 fix context of /usr/bin/rpmdb 2022-03-01 10:39:30 +08:00
openeuler-ci-bot
3cf3fbf8e6
!142 selinux_requires macro shouldn't depend on policycoreutils-python 
From: @lujie42 
Reviewed-by: @zhujianwei001 
Signed-off-by: @zhujianwei001
 2022-02-21 01:46:33 +00:00
lujie42
eec95ab819 selinux_requires macro shouldn't depend on policycoreutils-python 2022-02-19 10:52:10 +08:00
openeuler-ci-bot
545cacfcc0 !137 update selinux-policy-3.14.2 to selinux-policy-35.5-1 
Merge pull request !137 from lujie42/openEuler-22.03-LTS-Next
 2021-12-21 12:29:49 +00:00
lujie42
8c9992dbc2 update selinux-policy-3.14.2 to selinux-policy-35.5-1 2021-12-21 20:12:05 +08:00
openeuler-ci-bot
845f96352d !136 fix CVE-2020-24612 
From: @gys66
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-11-27 03:11:57 +00:00
gaoyusong
ec513c1cb0 fix CVE-2020-24612 
Signed-off-by: gaoyusong <gaoyusong1@huawei.com>
 2021-11-26 14:30:32 +08:00
openeuler-ci-bot
4394cae570 !130 set httpd_can_network_connect bool true 
From: @lujie42
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-09-16 01:34:14 +00:00
lujie42
ed7b163761 set httpd_can_network_connect bool true 2021-09-15 14:38:28 +08:00
openeuler-ci-bot
575c2bd42b !128 Add allow rasdaemon cap_sys_admin 
From: @lujie42
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-09-11 01:53:00 +00:00
lujie42
dae3534dc1 Add allow rasdaemon cap_sys_admin 2021-09-07 16:57:59 +08:00
openeuler-ci-bot
f540a003e2 !125 Allow systemd hostnamed read udev runtime data 
From: @lujie42
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-08-30 12:41:01 +00:00
lujie42
f5cd4854e9 Allow systemd hostnamed read udev runtime data 2021-08-28 15:37:52 +08:00
openeuler-ci-bot
9c75e44b71 !123 add avc for systemd selinux page 
From: @lujie42
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-08-25 12:51:26 +00:00
lujie42
0dcf75b174 add avc for systemd selinux page 2021-08-25 20:22:05 +08:00
openeuler-ci-bot
0b1cc62fc4 !122 [sync] PR-121: Add qemu_exec_t for stratovirt. 
From: @openeuler-sync-bot
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-08-20 07:29:05 +00:00
Ming Yang
4827c15f29 Add qemu_exec_t for stratovirt. 
Signed-off-by: Ming Yang <yangming73@huawei.com>
(cherry picked from commit a7e58912d2461c8915181f7af88c5c889cebaaef)
 2021-08-20 15:04:54 +08:00
openeuler-ci-bot
ee95a508ef !119 add weak dep of selinux-policy-targeted 
From: @lujie42
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-07-31 11:38:01 +00:00
lujie42
afff97ac55 Add weak dep of selinux-policy-targeted 2021-07-22 20:06:32 +08:00
openeuler-ci-bot
106ec7cd52 !113 [backport] iptables.fc: Add missing legacy-restore and legacy-save entries 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-06-21 12:50:40 +00:00
luhuaxin
c1e30c15e9 [backport] iptables.fc: Add missing legacy-restore and legacy-save entries 2021-06-17 21:40:29 +08:00
openeuler-ci-bot
f2160847b6 !112 fix context of ebtables 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-06-15 11:45:38 +00:00
卢华歆
83e1d46407 fix context of ebtables 2021-06-09 10:50:22 +08:00
luhuaxin
95b77d5438 fix context of ebtables 2021-06-09 10:24:39 +08:00
openeuler-ci-bot
bbb7898a99 !102 backport upstream patch 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-06-01 10:11:42 +08:00
luhuaxin
67a202caa4 backport some upstream patches 2021-05-31 18:58:06 +08:00
openeuler-ci-bot
a80a853d59 !100 allow kdump_t net_admin capability 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-05-29 16:33:38 +08:00
luhuaxin
376ce47dad allow kdump_t net_admin capability 2021-05-29 15:01:20 +08:00
openeuler-ci-bot
e5328d37b4 !95 allow rpcbind to bind all udp ports 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-05-27 22:10:38 +08:00
luhuaxin
f6c6e703eb allow rpcbind to bind all port 2021-05-27 20:46:18 +08:00
openeuler-ci-bot
77c0703f33 !80 sync modification on other branches 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-03-05 11:35:29 +08:00
HuaxinLuGitee
64b450cf99 sync modification on other branches 2021-03-05 10:52:38 +08:00
openeuler-ci-bot
0c24e3de8b !72 revert sync pr 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-03-04 21:27:47 +08:00
HuaxinLuGitee
ee48de4148 Revert "!63 [sync] PR-61: add patch for allowing systemd services to check selinux status" 
This reverts commit 6a2a24f73728bc6f9f84ee86a9b9e55f990ab159, reversing
changes made to e32b39f7dceeba4920507a916d6f6856d274c076.
 2021-03-04 20:51:15 +08:00
openeuler-ci-bot
6a2a24f737 !63 [sync] PR-61: add patch for allowing systemd services to check selinux status 
From: @openeuler-sync-bot
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2021-03-04 19:58:02 +08:00
HuaxinLuGitee
c94c44a3e1 add patch 
(cherry picked from commit 2d0372bd1827949321901de7d997f5c88ee9cd9d)
 2021-03-02 18:17:54 +08:00
openeuler-ci-bot
e32b39f7dc !57 add avc for openEuler on master 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2020-12-13 20:36:02 +08:00
HuaxinLuGitee
8e67f056a6 add avc 2020-12-13 15:42:53 +08:00
openeuler-ci-bot
b9f56b9c56 !52 add rule for systemd timedated on master 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2020-12-10 19:23:24 +08:00
HuaxinLuGitee
262c228f61 add rule for systemd timedated 2020-12-08 21:01:54 +08:00
openeuler-ci-bot
3ec818194a !47 add release require of policycoreutils on master 
From: @HuaxinLuGitee
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2020-12-07 09:15:44 +08:00
HuaxinLuGitee
1a12ac8216 fix spec 2020-12-04 18:08:16 +08:00
openeuler-ci-bot
d57e5a8d2b !34 添加YAML文件 
From: @caffeaulait
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2020-09-25 09:20:12 +08:00
caffeaulait
75a1e4b90f Add yaml file 2020-09-24 20:17:16 +08:00
openeuler-ci-bot
db13a397f4 !32 add file context for firewalld temporary file 
From: @nettingsisyphus
Reviewed-by: @zhujianwei001
Signed-off-by: @zhujianwei001
 2020-09-24 14:07:40 +08:00