342498065e
Module version bump for deprecated interface usage removal from Nicolas Iooss.
2014-05-27 09:23:29 -04:00
8d94022284
Module version bump for userdomain kernel symbol table fix from Nicolas Iooss.
2014-04-04 15:53:32 -04:00
10ff4d0fa3
Bump module versions for release.
2014-03-11 08:16:57 -04:00
b339b85001
Module version bump for patches from Dominick Grift.
2013-12-06 09:49:41 -05:00
3208ff94c4
Module version bump for second lot of patches from Dominick Grift.
2013-12-03 13:03:35 -05:00
50e5772ead
Module version bump for restricted x user template fix from Dominick Grift.
2013-09-26 09:29:42 -04:00
d174521a64
Bump module versions for release.
2013-04-24 16:14:52 -04:00
8e122068e4
Fix bug in userdom_delete_all_user_home_content_files() from Kohei KaiGai.
2013-02-25 11:26:13 -05:00
be2e70be8d
Module version bump for fixes from Dominick Grift.
2013-01-03 10:53:34 -05:00
a1f3891d66
Module version bump for userdomain portion of XDG updates from Dominick Grift.
2012-11-26 11:59:55 -05:00
f1ab10f1c6
These two attribute are unused
...
Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
2012-11-26 11:25:23 -05:00
9706f6a477
Create a attribute user_home_content_type and assign it to all types that are classified userdom_user_home_content()
...
Create various interfaces using the user_home_content_type attribute for
tmpreaper
user_home_t, user_tmp_t and user_tmpfs_t are user_home_content_type
(why?) We should probably also create user_tmp_content_type and
user_tmpfs_content_type attributes and assign to userdom_tmp_file and
userdom_tmpfs_file respectively
Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
2012-11-26 11:25:08 -05:00
8285fe10a6
Module version bump for user home content fixes from Dominick Grift.
2012-10-31 11:31:37 -04:00
af2496ea2e
Module version bump/contrib sync.
2012-10-30 16:12:14 -04:00
afdb509245
Module version bump for changes from Dominick Grift and Sven Vermeulen.
2012-10-09 11:01:42 -04:00
3516535aa6
Bump module versions for release.
2012-07-25 14:33:06 -04:00
4f24b1841c
Add optional name for kernel and system filetrans interfaces.
2012-05-10 09:53:45 -04:00
b72101a116
Module version bump and changelog for non-auth file attribute to eliminate set expressions, from James Carter.
2012-05-04 09:14:00 -04:00
f65edd8280
Bump module versions for release.
2012-02-15 14:32:45 -05:00
ba817fccd9
Add userdom interfaces for user application domains, user tmp files, and user tmpfs files.
2011-10-28 08:49:19 -04:00
aa4dad379b
Module version bump for release.
2011-07-26 08:11:01 -04:00
3cbc972771
Fix role declaration to handle new roleattribute requirements.
2011-07-25 12:10:05 -04:00
a29c7b86e1
Module version bump and Changelog for auth file patches from Matthew Ife.
2011-07-18 13:48:05 -04:00
b598c4421c
Merge various apps layer changes from the Fedora policy.
2011-06-08 13:05:34 -04:00
ec5d81e1ca
Aisexec patch from Miroslav Grepl.
...
* openais needs ipc_owner and read/write user SysV sempaphores/shared memory
2011-03-21 11:23:26 -04:00
826d014241
Bump module versions for release.
2010-12-13 09:12:22 -05:00
e29f6bf08a
Module version bump and Changelog for 329138b and 413aac1.
2010-10-01 09:50:50 -04:00
48c3c37cf2
Remove some redundant attributes from user_home_t.
...
Signed-off-by: Dominick Grift <domg472@gmail.com>
Signed-off-by: Chris PeBenito <cpebenito@tresys.com>
2010-07-12 14:35:22 -04:00
4b76ea5f51
Module version bump for fa1847f.
2010-07-12 14:02:18 -04:00
1db1836ab9
Remove improper usage of userdom_manage_home_role(), userdom_manage_tmp_role(), and userdom_manage_tmpfs_role().
2010-07-06 13:17:05 -04:00
48f99a81c0
Whitespace change: drop unnecessary blank line at the start of .te files.
2010-06-10 08:16:35 -04:00
c54e7d63dc
Module version bump for cgroup patchset.
2010-06-08 09:18:43 -04:00
29af4c13e7
Bump module versions for release.
2010-05-24 15:32:01 -04:00
a6bafb5a25
Module version bump for bf530f5.
2010-03-03 13:11:58 -05:00
2d743657f4
Userdomain patch from Stefan Schulze Frielinghaus.
2010-02-08 11:43:44 -05:00
22a2874dbf
Add dbadm, from KaiGai Kohei.
2010-02-08 10:34:08 -05:00
ed3a1f559a
bump module versions for release.
2009-11-17 10:05:56 -05:00
a9e9678fc7
kismet patch from dan.
2009-08-31 09:38:47 -04:00
aaff2fcfcd
module version number bump for tun patches
2009-08-31 09:17:31 -04:00
0be901ba40
rename admin_tun_type to admindomain.
2009-08-31 09:03:51 -04:00
bd75703c7d
reorganize tun patch changes.
2009-08-31 08:49:57 -04:00
9dc3cd1635
refpol: Policy for the new TUN driver access controls
...
Add policy for the new TUN driver access controls which allow policy to
control which domains have the ability to create and attach to TUN/TAP
devices. The policy rules for creating and attaching to a device are as
shown below:
# create a new device
allow domain_t self:tun_socket { create };
# attach to a persistent device (created by tunlbl_t)
allow domain_t tunlbl_t:tun_socket { relabelfrom };
allow domain_t self:tun_socket { relabelto };
Further discussion can be found on this thread:
* http://marc.info/?t=125080850900002&r=1&w=2
Signed-off-by: Paul Moore <paul.moore@hp.com>
2009-08-31 08:36:06 -04:00
4279891d1f
patch from Eamon Walsh to remove useage of deprecated xserver interfaces.
2009-08-28 13:40:29 -04:00
93c49bdb04
deprecate userdom_xwindows_client_template
...
The X policy for users is currently split between
userdom_xwindows_client_template() and xserver_role(). Deprecate
the former and put the rules into the latter.
For preserving restricted X roles (xguest), divide the rules
into xserver_restricted_role() and xserver_role().
2009-08-28 13:29:36 -04:00
9570b28801
module version number bump for release 2.20090730 that was mistakenly omitted.
2009-08-05 10:59:21 -04:00
09516cb4be
remove read_default_t tunable
2009-07-23 08:58:35 -04:00
3f67f722bb
trunk: whitespace fixes
2009-06-26 14:40:13 +00:00
f0435b1ac4
trunk: add support for labeled booleans.
2009-01-13 13:01:48 +00:00
c1262146e0
trunk: Remove node definitions and change node usage to generic nodes.
2009-01-09 19:48:02 +00:00
668b3093ff
trunk: change network interface access from all to generic network interfaces.
2009-01-06 20:24:10 +00:00
Chris PeBenito
Dominick Grift
Dominick Grift
Chris PeBenito
Paul Moore