jinlun
|
98ef00f443
|
Don't allow kernel_t to execute bin_t/usr_t binaries without a transition
|
2023-03-23 14:59:51 +08:00 |
|
Huaxin Lu
|
a3e27ea362
|
add avc rules for cloud-init
|
2023-02-07 09:37:18 +08:00 |
|
zgzxx
|
bd458c8790
|
update version to 38.6
|
2023-02-03 17:29:26 +08:00 |
|
lixiao
|
d01c30e104
|
add rule for hostnamed to rpmscript dbus chat
|
2022-12-30 11:49:26 +08:00 |
|
lixiao
|
3318771e47
|
add the dependency between packages
Signed-off-by: lixiao <lixiaoemail2017@163.com>
|
2022-12-24 08:12:36 +00:00 |
|
xuraoqing
|
276d709d83
|
modify the patch name for the problem of vendor hard code
|
2022-12-03 21:23:03 +08:00 |
|
lujie42
|
8f5a7284a7
|
update upstream patches
|
2022-11-28 10:41:07 +08:00 |
|
xinghe
|
9fe529338f
|
allow map postfix_master_t
|
2022-09-19 15:59:02 +08:00 |
|
lujie54
|
bed9e54ba5
|
backport upstream patches
|
2022-09-15 10:25:08 +08:00 |
|
lujie54
|
21f06ca0b3
|
backport upstream patches
|
2022-09-15 09:20:10 +08:00 |
|
lujie54
|
738fcaf614
|
update upstream patches
|
2022-09-14 15:35:03 +08:00 |
|
lujie54
|
45421a28ba
|
update upstream patches
|
2022-09-13 19:52:03 +08:00 |
|
lujie54
|
3c7c076926
|
backport upstream patches
|
2022-09-05 10:17:25 +08:00 |
|
wxdl
|
ef438f32fe
|
Allow chage domtrans to sssd
|
2022-08-19 09:55:39 +08:00 |
|
lujie54
|
4fcb05937d
|
Allow domain transition to sssd_t and role access to sssd
|
2022-06-27 21:35:58 +08:00 |
|
luhuaxin
|
14c13b3f9c
|
allow httpd to create files in /etc/httpd
|
2022-06-25 15:21:34 +08:00 |
|
luhuaxin
|
4fb7ff7fee
|
add open permission to files_read_inherited_tmp_file
|
2022-04-28 17:20:43 +08:00 |
|
lujie42
|
5d8b207b89
|
fix context of /usr/bin/rpmdb
|
2022-02-28 14:12:17 +08:00 |
|
lujie42
|
c098ffa16a
|
selinux-requires macro shouldn't depend on policycoreutils-python
|
2022-02-21 10:26:43 +08:00 |
|
lujie42
|
6ebc7b5b53
|
update selinux-policy-3.14.2 to selinux-policy-35.5-1
|
2022-01-11 20:10:16 +08:00 |
|
lujie42
|
df3c36d34c
|
Fix CVE-2020-24612
|
2021-10-08 11:35:33 +08:00 |
|
lujie42
|
be315378df
|
set httpd_can_network_connect bool true
|
2021-09-22 09:47:17 +08:00 |
|
lujie42
|
77e27bb287
|
Add allow rasdaemon cap_sys_admin
|
2021-09-03 20:45:51 +08:00 |
|
lujie42
|
2530406b8f
|
Allow systemd hostnamed read udev runtime data
|
2021-08-31 16:06:49 +08:00 |
|
ExtinctFire
|
ad1f8e0d0d
|
add avc for systemd selinux page
Signed-off-by: ExtinctFire <shenyining_00@126.com>
|
2021-08-28 11:26:03 +08:00 |
|
Ming Yang
|
a7e58912d2
|
Add qemu_exec_t for stratovirt.
Signed-off-by: Ming Yang <yangming73@huawei.com>
|
2021-08-20 14:17:15 +08:00 |
|
lujie42
|
afff97ac55
|
Add weak dep of selinux-policy-targeted
|
2021-07-22 20:06:32 +08:00 |
|
luhuaxin
|
c1e30c15e9
|
[backport] iptables.fc: Add missing legacy-restore and legacy-save entries
|
2021-06-17 21:40:29 +08:00 |
|
卢华歆
|
83e1d46407
|
fix context of ebtables
|
2021-06-09 10:50:22 +08:00 |
|
luhuaxin
|
67a202caa4
|
backport some upstream patches
|
2021-05-31 18:58:06 +08:00 |
|
luhuaxin
|
376ce47dad
|
allow kdump_t net_admin capability
|
2021-05-29 15:01:20 +08:00 |
|
luhuaxin
|
f6c6e703eb
|
allow rpcbind to bind all port
|
2021-05-27 20:46:18 +08:00 |
|
HuaxinLuGitee
|
64b450cf99
|
sync modification on other branches
|
2021-03-05 10:52:38 +08:00 |
|
HuaxinLuGitee
|
ee48de4148
|
Revert "!63 [sync] PR-61: add patch for allowing systemd services to check selinux status"
This reverts commit 6a2a24f73728bc6f9f84ee86a9b9e55f990ab159, reversing
changes made to e32b39f7dceeba4920507a916d6f6856d274c076.
|
2021-03-04 20:51:15 +08:00 |
|
HuaxinLuGitee
|
c94c44a3e1
|
add patch
(cherry picked from commit 2d0372bd1827949321901de7d997f5c88ee9cd9d)
|
2021-03-02 18:17:54 +08:00 |
|
HuaxinLuGitee
|
8e67f056a6
|
add avc
|
2020-12-13 15:42:53 +08:00 |
|
HuaxinLuGitee
|
262c228f61
|
add rule for systemd timedated
|
2020-12-08 21:01:54 +08:00 |
|
HuaxinLuGitee
|
1a12ac8216
|
fix spec
|
2020-12-04 18:08:16 +08:00 |
|
Anakin Zhang
|
3a0f999a81
|
add file context for firewalld temporary file
|
2020-09-24 09:40:51 +08:00 |
|
HuaxinLuGitee
|
5298b813e1
|
add patch for systemd hostnamed and logind
|
2020-09-22 21:14:15 +08:00 |
|
HuaxinLuGitee
|
06fcfa3a98
|
add patches for machined to delete userdbd socket
|
2020-09-17 17:21:33 +08:00 |
|
HuaxinLuGitee
|
a739fb7124
|
add patch for virt
|
2020-09-10 21:03:18 +08:00 |
|
HuaxinLuGitee
|
68df94f5e3
|
add add_userman_access_run_dir.patch
|
2020-08-28 22:45:33 +08:00 |
|
guoxiaoqi
|
52b068a5c6
|
update selinux-policy
|
2020-07-27 09:57:59 +08:00 |
|
huangzq6
|
6829f2b54d
|
add patch to fixing logind read issue of dist device
|
2020-07-20 17:40:10 +08:00 |
|
guoxiaoqi
|
8ad71f4dc6
|
add avc for openEuler
|
2020-06-04 21:13:41 +08:00 |
|
guoxiaoqi
|
899b6a7957
|
allow passwd to map and write sssd var lib
|
2020-05-30 10:59:50 +08:00 |
|
guoxiaoqi
|
072717ccd5
|
use container-selinux.tgz of 2.73
|
2020-03-20 17:49:28 +08:00 |
|
guoxiaoqi
|
65e8657831
|
fix upgrade error
|
2020-03-17 19:49:40 +08:00 |
|
guoxiaoqi
|
7cd212411f
|
fix upgrade error
|
2020-03-12 15:23:53 +08:00 |
|