10ff4d0fa3
Bump module versions for release.
2014-03-11 08:16:57 -04:00
58db129761
Update modules for file_t merge into unlabeled_t.
2014-01-16 11:24:25 -05:00
3208ff94c4
Module version bump for second lot of patches from Dominick Grift.
2013-12-03 13:03:35 -05:00
3ee649f132
Add comment in policy for lvm sysfs write.
2013-12-03 10:54:22 -05:00
6905ddaa98
lvm: lvm writes read_ahead_kb
...
Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
2013-12-03 10:53:23 -05:00
b7b3b55280
Module version bumps for Debian udev updates from Dominick Grift.
2013-09-27 16:44:54 -04:00
5a727e1c60
Module version bump for lvm update from Dominick Grift.
2013-09-26 09:24:58 -04:00
43d6ac3f8e
lvm: lvm and udisks-lvm-pv-e read /run/udev/queue.bin
...
Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
2013-09-26 09:16:36 -04:00
d174521a64
Bump module versions for release.
2013-04-24 16:14:52 -04:00
e1ab3f885b
Module version bump for misc updates from Sven Vermeulen.
2013-01-03 10:32:41 -05:00
829b252cdc
lvscan creates the /run/lock/lvm directory if nonexisting (v2)
...
If the /run/lock/lvm directory doesn't exist yet, running any of the LVM tools
(like lvscan) will create this directory. Introduce a named file transition for
the lock location when a directory named "lvm" is created and grant the
necessary rights to create the directory.
Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
2013-01-03 10:32:41 -05:00
3516535aa6
Bump module versions for release.
2012-07-25 14:33:06 -04:00
7b6fe9c1a5
Module version bump for syslog-ng and lvm patches from Sven Vermeulen.
2012-05-04 10:49:11 -04:00
ee62c91345
Recent lvm utilities now use setfscreate
...
Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
2012-05-04 10:45:57 -04:00
aa4dad379b
Module version bump for release.
2011-07-26 08:11:01 -04:00
a26f6088c9
Changelog and module version bump for LVM semaphore usage patch from Sven Vermeulen.
2011-02-09 09:01:18 -05:00
57835f4453
LVM uses systemwide semaphores for activities such as vgchange -ay
...
The LVM subsystem uses system-wide semaphores for various activities.
Although the system boots properly without these (apart from the AVC denials
of course), I would assume that they are here to ensure no corruption of any
kind happens in case of concurrent execution / race conditions.
As such, I rather enable it explicitly in the security policy.
Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
2011-02-09 09:00:12 -05:00
dd74a2f442
policy/modules/system/lvm.te Typo change directores to directories, and also clean up a comment.
...
The below patch changes a typo "directores" to "directories", and also
fixes a comment to sound more proper.
Signed-off-by: Justin P. Mattock <justinmattock@gmail.com>
2011-02-01 09:09:26 -05:00
bca0cdb86e
Remove duplicate/redundant rules, from Russell Coker.
2010-07-07 08:41:20 -04:00
48f99a81c0
Whitespace change: drop unnecessary blank line at the start of .te files.
2010-06-10 08:16:35 -04:00
29af4c13e7
Bump module versions for release.
2010-05-24 15:32:01 -04:00
dccbb80cb0
Whitespace cleanup.
2009-11-24 11:11:38 -05:00
bd34ef71df
LVM patch from Dan Walsh.
2009-11-24 09:19:45 -05:00
9570b28801
module version number bump for release 2.20090730 that was mistakenly omitted.
2009-08-05 10:59:21 -04:00
568efbe895
fix ordering of interface calls in lvm.
2009-08-05 10:07:35 -04:00
3f67f722bb
trunk: whitespace fixes
2009-06-26 14:40:13 +00:00
c0f5fa011a
trunk: whitespace fixes.
2009-05-06 14:44:57 +00:00
3392356f36
trunk: 5 patches from dan.
2009-05-06 14:26:20 +00:00
c1262146e0
trunk: Remove node definitions and change node usage to generic nodes.
2009-01-09 19:48:02 +00:00
668b3093ff
trunk: change network interface access from all to generic network interfaces.
2009-01-06 20:24:10 +00:00
17ec8c1f84
trunk: bump module versions for release.
2008-12-10 19:38:10 +00:00
296273a719
trunk: merge UBAC.
2008-11-05 16:10:46 +00:00
2cca6b79b4
trunk: remove redundant shared lib calls.
2008-10-17 17:31:04 +00:00
cfcf5004e5
trunk: bump versions for release.
2008-07-02 14:07:57 +00:00
e9c6cda7da
trunk: Move user roles into individual modules.
2008-04-29 13:58:34 +00:00
2083db2e40
trunk: Cryptsetup runs shell scripts. Patch from Martin Orr.
2008-04-18 15:32:03 +00:00
f7925f25f7
trunk: bump module versions for release.
2007-12-14 14:23:18 +00:00
02d968c581
trunk: several fc updates from dan.
2007-12-12 15:55:21 +00:00
c0cf6e0a6e
trunk: clean up nsswitch usage, from dan.
2007-12-04 15:05:55 +00:00
6c53a10e28
trunk: Patch to clean up unescaped periods in several file context entries from Jan-Frode Myklebust.
2007-10-05 18:00:55 +00:00
12e9ea1ae3
trunk: module version bumps for previous commit.
2007-10-02 17:15:07 +00:00
350b6ab767
trunk: merge strict and targeted policies. merge shlib_t into lib_t.
2007-10-02 16:04:50 +00:00
116c1da330
trunk: update module version numbers for release.
2007-06-29 14:48:13 +00:00
1900668638
trunk: Unified labeled networking policy from Paul Moore.
...
The latest revision of the labeled policy patches which enable both labeled
and unlabeled policy support for NetLabel. This revision takes into account
Chris' feedback from the first version and reduces the number of interface
calls in each domain down to two at present: one for unlabeled access, one for
NetLabel access. The older, transport layer specific interfaces, are still
present for use by third-party modules but are not used in the default policy
modules.
trunk: Use netmsg initial SID for MLS-only Netlabel packets, from Paul Moore.
This patch changes the policy to use the netmsg initial SID as the "base"
SID/context for NetLabel packets which only have MLS security attributes.
Currently we use the unlabeled initial SID which makes it very difficult to
distinquish between actual unlabeled packets and those packets which have MLS
security attributes.
2007-06-27 15:23:21 +00:00
0251df3e39
bump module versions for release
2007-04-17 13:28:09 +00:00
8021cb4f63
Merge sbin_t and ls_exec_t into bin_t.
2007-03-23 23:24:59 +00:00
cc9130b90a
one-liner from dan
2007-03-22 14:01:55 +00:00
a5f5eba459
Add dontaudits for init fds and console to init_daemon_domain().
2007-03-20 18:47:18 +00:00
c5561c777d
patches for lvm and ricci fixes from Dan Walsh.
2007-03-06 15:35:02 +00:00
6b19be3360
patch from dan, Thu, 2007-01-25 at 08:12 -0500
2007-02-16 23:01:42 +00:00
Chris PeBenito
Dominick Grift
Sven Vermeulen
Chris PeBenito
Justin P. Mattock