packages/selinux-policy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Commit Graph

  • 7333bcafce
         !265 Recovering the SELinux Label main openeuler-ci-bot 2024-11-28 03:14:54 +00:00
  • 83350518b1 Recovering the SELinux Label Linux_zhang 2024-11-27 19:27:56 +08:00
  • 5b9f77f4d5
         !256 Add support for secretmem anon inode openeuler-ci-bot 2024-11-13 01:56:56 +00:00
  • 318a8c7f84 Add support for secretmem anon inode Linux_zhang 2024-11-05 11:14:16 +08:00
  • 50ad53f567
         !249 update modules-targeted-contrib.conf openeuler-ci-bot 2024-04-12 03:32:53 +00:00
  • 81b001bdf4 update modules-targeted-contrib.conf jinlun 2024-04-11 17:17:08 +08:00
  • 27f6587f0e
         !240 update version to 40.7 openeuler-ci-bot 2024-01-29 08:26:46 +00:00
  • 77c5b8e284 update version to 40.7 jinlun 2023-12-28 19:33:26 +08:00
  • 4f94b5ea93
         !224 selinux-policy:update version to 38.21 openeuler-ci-bot 2023-07-22 03:45:54 +00:00
  • ccec791b8a selinux-policy:update version to 38.21 jinlun 2023-07-21 09:43:04 +08:00
  • 1b601a0825
         !217 backport some upstream patches openeuler-ci-bot 2023-05-31 11:28:27 +00:00
  • ed48d454cb backport some upstream patches Huaxin Lu 2023-05-31 09:59:01 +08:00
  • de81d60d92
         !216 allow login_pgm setcap permission openeuler-ci-bot 2023-03-30 01:20:47 +00:00
  • de38b55dfe allow login_pgm setcap permission Huaxin Lu 2023-03-29 16:41:00 +08:00
  • 6dfc00001a
         !215 Don't allow kernel_t to execute bin_t/usr_t binaries without a transition openeuler-ci-bot 2023-03-23 10:54:47 +00:00
  • 98ef00f443 Don't allow kernel_t to execute bin_t/usr_t binaries without a transition jinlun 2023-03-23 14:59:51 +08:00
  • 7878b97e6e
         !209 add avc rules for cloud-init openeuler-ci-bot 2023-02-07 02:30:10 +00:00
  • a3e27ea362 add avc rules for cloud-init Huaxin Lu 2023-01-29 00:38:39 +08:00
  • 036edbe0d7
         !208 update version to 38.6 openeuler-ci-bot 2023-02-04 02:16:03 +00:00
  • bd458c8790 update version to 38.6 zgzxx 2023-02-01 16:42:06 +08:00
  • 6ffaf8fb57
         !207 add rule for hostnamed to rpmscript dbus chat openeuler-ci-bot 2022-12-30 09:57:31 +00:00
  • d01c30e104 add rule for hostnamed to rpmscript dbus chat lixiao 2022-12-30 11:49:26 +08:00
  • 93a4b87311
         !202 add the dependency between packages openeuler-ci-bot 2022-12-26 03:43:54 +00:00
  • 3318771e47
         add the dependency between packages lixiao 2022-12-24 08:12:36 +00:00
  • e51c043255
         !192 modify the patch name for the problem of vendor hard code openeuler-ci-bot 2022-12-05 01:15:52 +00:00
  • 276d709d83 modify the patch name for the problem of vendor hard code xuraoqing 2022-12-03 21:23:03 +08:00
  • 9ea9984d7c
         !187 update upstream patches openeuler-ci-bot 2022-11-28 03:08:29 +00:00
  • 8f5a7284a7 update upstream patches lujie42 2022-11-27 22:53:05 +08:00
  • 5517afbdc6
         !183 allow map postfix_master_t openeuler-ci-bot 2022-09-19 08:51:16 +00:00
  • 9fe529338f allow map postfix_master_t xinghe 2022-09-19 15:59:02 +08:00
  • 0289bc3f8b
         !179 update upstream patches openeuler-ci-bot 2022-09-15 08:51:52 +00:00
  • bed9e54ba5 backport upstream patches lujie54 2022-09-15 10:25:08 +08:00
  • 7de1ff2684
         !175 update upstream patches openeuler-ci-bot 2022-09-15 01:48:18 +00:00
  • 21f06ca0b3 backport upstream patches lujie54 2022-09-15 09:20:10 +08:00
  • 62ad05ce61
         !171 update upstream patches openeuler-ci-bot 2022-09-14 09:10:09 +00:00
  • 738fcaf614 update upstream patches lujie54 2022-09-13 20:45:40 +08:00
  • 899a7b17a3
         !167 update upstream patches openeuler-ci-bot 2022-09-13 12:25:30 +00:00
  • 45421a28ba update upstream patches lujie54 2022-09-13 19:52:03 +08:00
  • 3ef622fcc2
         !163 update upstream patches openeuler-ci-bot 2022-09-05 03:36:03 +00:00
  • 3c7c076926 backport upstream patches lujie54 2022-09-02 15:54:31 +08:00
  • 50a98d956e
         !159 Allow chage domtrans to sssd openeuler-ci-bot 2022-08-19 02:57:34 +00:00
  • ef438f32fe Allow chage domtrans to sssd wxdl 2022-08-18 11:42:50 +08:00
  • 634a717a51
         !156 Allow domain transition to sssd_t and role access to sssd From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2022-06-30 12:49:52 +00:00
  • 4fcb05937d Allow domain transition to sssd_t and role access to sssd lujie54 2022-06-27 21:35:58 +08:00
  • a3631e7ab5
         !151 allow httpd to create files in /etc/httpd From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2022-06-25 09:26:31 +00:00
  • 14c13b3f9c allow httpd to create files in /etc/httpd luhuaxin 2022-06-25 15:21:34 +08:00
  • 1fb1efdfd1
         !148 add open permission to files_read_inherited_tmp_file From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2022-04-28 11:03:58 +00:00
  • 4fb7ff7fee add open permission to files_read_inherited_tmp_file luhuaxin 2022-04-28 17:20:43 +08:00
  • e91cac707e
         !145 fix context of /usr/bin/rpmdb From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2022-03-01 02:16:52 +00:00
  • 5d8b207b89 fix context of /usr/bin/rpmdb lujie42 2022-02-28 14:12:17 +08:00
  • 101f6817a0
         !143 selinux-requires macro shouldn't depend on policycoreutils-python From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2022-02-21 12:52:14 +00:00
  • c098ffa16a selinux-requires macro shouldn't depend on policycoreutils-python lujie42 2022-02-21 10:26:43 +08:00
  • c8d151dfa0
         !141 update selinux-policy-3.14.2 to selinux-policy-35.5-1 From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2022-02-21 01:46:21 +00:00
  • 6ebc7b5b53 update selinux-policy-3.14.2 to selinux-policy-35.5-1 lujie42 2022-01-11 20:10:16 +08:00
  • 22388671cb !134 Fix CVE-2020-24612 From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-11-16 04:10:11 +00:00
  • df3c36d34c Fix CVE-2020-24612 lujie42 2021-10-08 11:35:33 +08:00
  • b0507f843a !131 set httpd_can_network_connect bool true From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-09-30 07:20:42 +00:00
  • be315378df set httpd_can_network_connect bool true lujie42 2021-09-22 09:47:17 +08:00
  • a44af5a0ee !127 Add allow rasdaemon cap_sys_admin From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-09-07 01:43:46 +00:00
  • ed7a2bd008 Merge branch 'master' of https://gitee.com/lujie42/selinux-policy lujie42 2021-09-03 20:55:13 +08:00
  • 77e27bb287 Add allow rasdaemon cap_sys_admin lujie42 2021-09-03 20:45:51 +08:00
  • f3b4286d02 !126 Allow systemd hostnamed read udev runtime data From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-08-31 12:21:18 +00:00
  • 2530406b8f Allow systemd hostnamed read udev runtime data lujie42 2021-08-31 16:06:49 +08:00
  • 40252f9d44 !124 add avc for systemd selinux page From: @extinctfire Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-08-28 06:10:43 +00:00
  • ad1f8e0d0d add avc for systemd selinux page ExtinctFire 2021-08-28 11:26:03 +08:00
  • f4a58218c6 !121 Add qemu_exec_t for stratovirt. From: @yangming73 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-08-20 07:04:51 +00:00
  • a7e58912d2 Add qemu_exec_t for stratovirt. Ming Yang 2021-08-20 14:17:15 +08:00
  • ee95a508ef !119 add weak dep of selinux-policy-targeted From: @lujie42 Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-07-31 11:38:01 +00:00
  • afff97ac55 Add weak dep of selinux-policy-targeted lujie42 2021-07-22 20:06:32 +08:00
  • 106ec7cd52 !113 [backport] iptables.fc: Add missing legacy-restore and legacy-save entries From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-06-21 12:50:40 +00:00
  • c1e30c15e9 [backport] iptables.fc: Add missing legacy-restore and legacy-save entries luhuaxin 2021-06-17 21:40:29 +08:00
  • f2160847b6 !112 fix context of ebtables From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-06-15 11:45:38 +00:00
  • 83e1d46407 fix context of ebtables 卢华歆 2021-06-09 10:32:09 +08:00
  • 95b77d5438 fix context of ebtables luhuaxin 2021-06-09 10:24:39 +08:00
  • bbb7898a99 !102 backport upstream patch From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-06-01 10:11:42 +08:00
  • 67a202caa4 backport some upstream patches luhuaxin 2021-05-31 16:38:15 +08:00
  • a80a853d59 !100 allow kdump_t net_admin capability From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-05-29 16:33:38 +08:00
  • 376ce47dad allow kdump_t net_admin capability luhuaxin 2021-05-29 14:50:37 +08:00
  • e5328d37b4 !95 allow rpcbind to bind all udp ports From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-05-27 22:10:38 +08:00
  • f6c6e703eb allow rpcbind to bind all port luhuaxin 2021-05-27 20:46:18 +08:00
  • 77c0703f33 !80 sync modification on other branches From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-03-05 11:35:29 +08:00
  • 64b450cf99 sync modification on other branches HuaxinLuGitee 2021-03-05 09:56:07 +08:00
  • 0c24e3de8b !72 revert sync pr From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-03-04 21:27:47 +08:00
  • ee48de4148 Revert "!63 [sync] PR-61: add patch for allowing systemd services to check selinux status" HuaxinLuGitee 2021-03-04 20:51:15 +08:00
  • 6a2a24f737 !63 [sync] PR-61: add patch for allowing systemd services to check selinux status From: @openeuler-sync-bot Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2021-03-04 19:58:02 +08:00
  • c94c44a3e1 add patch HuaxinLuGitee 2021-02-27 16:27:04 +08:00
  • e32b39f7dc !57 add avc for openEuler on master From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2020-12-13 20:36:02 +08:00
  • 8e67f056a6 add avc HuaxinLuGitee 2020-12-13 15:36:39 +08:00
  • b9f56b9c56 !52 add rule for systemd timedated on master From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2020-12-10 19:23:24 +08:00
  • 262c228f61 add rule for systemd timedated HuaxinLuGitee 2020-12-08 21:01:54 +08:00
  • 3ec818194a !47 add release require of policycoreutils on master From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2020-12-07 09:15:44 +08:00
  • 1a12ac8216 fix spec HuaxinLuGitee 2020-12-04 18:08:16 +08:00
  • d57e5a8d2b !34 添加YAML文件 From: @caffeaulait Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2020-09-25 09:20:12 +08:00
  • 75a1e4b90f Add yaml file caffeaulait 2020-09-24 20:17:16 +08:00
  • db13a397f4 !32 add file context for firewalld temporary file From: @nettingsisyphus Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2020-09-24 14:07:40 +08:00
  • 3a0f999a81 add file context for firewalld temporary file Anakin Zhang 2020-09-24 09:40:51 +08:00
  • 9364846f46 !31 同步20.09分支补丁到master分支 From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2020-09-23 12:48:25 +08:00
  • f65bfeb2f7 !30 add patch for systemd hostnamed and logind From: @HuaxinLuGitee Reviewed-by: @zhujianwei001 Signed-off-by: @zhujianwei001 openeuler-ci-bot 2020-09-22 21:36:01 +08:00
  • 5298b813e1 add patch for systemd hostnamed and logind HuaxinLuGitee 2020-09-22 21:14:15 +08:00
  • c13c700791 !29 add patch for machined to delete userdbd socket From: @HuaxinLuGitee Reviewed-by: @zhujianwei001,@zhujianwei001 Signed-off-by: @zhujianwei001,@zhujianwei001 openeuler-ci-bot 2020-09-21 12:17:44 +08:00