RepoMirrors
/
selinux-refpolicy
mirror of https://github.com/SELinuxProject/refpolicy
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
selinux-refpolicy/policy/modules/admin
History
Kenton Groombridge 910e36829e sudo: fixes for polyinstantiation 
PAM can be configured to allow sudo to unmount/remount private tmp
directories when invoked. Allow this access if enabled.

Signed-off-by: Kenton Groombridge <me@concord.sh>
 		2022-03-23 10:57:57 -04:00
..
acct.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
acct.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
acct.te Drop module versioning. 2022-01-06 09:19:13 -05:00
aide.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
aide.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
aide.te Drop module versioning. 2022-01-06 09:19:13 -05:00
alsa.fc Allow alsa_t to create alsa_runtime_t file as well 2019-10-31 12:08:03 +01:00
alsa.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
alsa.te Drop module versioning. 2022-01-06 09:19:13 -05:00
amanda.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
amanda.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
amanda.te Drop module versioning. 2022-01-06 09:19:13 -05:00
amtu.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
amtu.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
amtu.te Drop module versioning. 2022-01-06 09:19:13 -05:00
anaconda.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
anaconda.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
anaconda.te Drop module versioning. 2022-01-06 09:19:13 -05:00
apt.fc apt, bootloader: Move lines. 2021-02-02 13:32:42 -05:00
apt.if Fix mismatches between object class and permission macro. 2020-04-20 15:46:33 -04:00
apt.te Drop module versioning. 2022-01-06 09:19:13 -05:00
backup.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
backup.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
backup.te Drop module versioning. 2022-01-06 09:19:13 -05:00
bacula.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
bacula.if Update callers for "pid" to "runtime" interface rename. 2020-06-28 16:03:45 -04:00
bacula.te Drop module versioning. 2022-01-06 09:19:13 -05:00
blueman.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
blueman.if policy: interfaces: doc: indent param blocks consistently 2021-07-02 12:19:25 +03:00
blueman.te Drop module versioning. 2022-01-06 09:19:13 -05:00
bootloader.fc bootloader: add rEFInd and systemd-boot 2020-04-25 13:15:46 +03:00
bootloader.if
bootloader.te Drop module versioning. 2022-01-06 09:19:13 -05:00
brctl.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
brctl.if policy: interfaces: doc: indent param blocks consistently 2021-07-02 12:19:25 +03:00
brctl.te Drop module versioning. 2022-01-06 09:19:13 -05:00
certwatch.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
certwatch.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
certwatch.te Drop module versioning. 2022-01-06 09:19:13 -05:00
cfengine.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
cfengine.if Fix situations where require blocks in interfaces listed types not actually referenced by that interface 2020-01-24 08:18:55 -05:00
cfengine.te Drop module versioning. 2022-01-06 09:19:13 -05:00
chkrootkit.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
chkrootkit.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
chkrootkit.te Drop module versioning. 2022-01-06 09:19:13 -05:00
consoletype.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
consoletype.if Make hide_broken_symptoms unconditional. 2022-02-16 12:04:21 -05:00
consoletype.te Drop module versioning. 2022-01-06 09:19:13 -05:00
dmesg.fc Create / to /usr equivalence for bin, sbin, and lib, from Russell Coker. 2017-02-04 15:19:35 -05:00
dmesg.if
dmesg.te Drop module versioning. 2022-01-06 09:19:13 -05:00
dmidecode.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
dmidecode.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
dmidecode.te Drop module versioning. 2022-01-06 09:19:13 -05:00
dphysswapfile.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
dphysswapfile.if remove deprecated from 20190201 2021-01-25 08:59:34 -05:00
dphysswapfile.te Drop module versioning. 2022-01-06 09:19:13 -05:00
dpkg.fc dpkg: allow dpkg frontends to acquire lock by labeling it correctly 2020-06-15 14:45:07 +02:00
dpkg.if Fix mismatches between object class and permission macro. 2020-04-20 15:46:33 -04:00
dpkg.te Drop module versioning. 2022-01-06 09:19:13 -05:00
fakehwclock.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
fakehwclock.if remove deprecated from 20190201 2021-01-25 08:59:34 -05:00
fakehwclock.te Drop module versioning. 2022-01-06 09:19:13 -05:00
firstboot.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
firstboot.if selint: fix S-010 2020-08-28 17:39:09 +02:00
firstboot.te Drop module versioning. 2022-01-06 09:19:13 -05:00
hwloc.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
hwloc.if Update callers for "pid" to "runtime" interface rename. 2020-06-28 16:03:45 -04:00
hwloc.te Drop module versioning. 2022-01-06 09:19:13 -05:00
kdump.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
kdump.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
kdump.te Drop module versioning. 2022-01-06 09:19:13 -05:00
kismet.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
kismet.if Merge pull request #388 from maage/doc-style 2021-07-06 09:37:44 -04:00
kismet.te Drop module versioning. 2022-01-06 09:19:13 -05:00
logrotate.fc Realign logrotate.fc, remove an obvious comment 2018-10-13 13:39:18 -04:00
logrotate.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
logrotate.te various: various userns capability permissions 2022-01-24 11:07:02 -05:00
logwatch.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
logwatch.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
logwatch.te Drop module versioning. 2022-01-06 09:19:13 -05:00
mcelog.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
mcelog.if Update callers for "pid" to "runtime" interface rename. 2020-06-28 16:03:45 -04:00
mcelog.te Drop module versioning. 2022-01-06 09:19:13 -05:00
metadata.xml
mrtg.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
mrtg.if Update callers for "pid" to "runtime" interface rename. 2020-06-28 16:03:45 -04:00
mrtg.te Drop module versioning. 2022-01-06 09:19:13 -05:00
ncftool.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
ncftool.if policy: interfaces: doc: indent param blocks consistently 2021-07-02 12:19:25 +03:00
ncftool.te Drop module versioning. 2022-01-06 09:19:13 -05:00
netutils.fc netutils: allow mtr to communicate with mtr-packet 2019-12-30 13:53:28 +01:00
netutils.if
netutils.te Make hide_broken_symptoms unconditional. 2022-02-16 12:04:21 -05:00
passenger.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
passenger.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
passenger.te Drop module versioning. 2022-01-06 09:19:13 -05:00
portage.fc portage: Added /var/cache/distfiles path. 2020-11-22 14:00:34 -05:00
portage.if Remove unlabeled packet access 2020-06-03 23:16:19 +03:00
portage.te Make hide_broken_symptoms unconditional. 2022-02-16 12:04:21 -05:00
prelink.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
prelink.if Make hide_broken_symptoms unconditional. 2022-02-16 12:04:21 -05:00
prelink.te Make hide_broken_symptoms unconditional. 2022-02-16 12:04:21 -05:00
puppet.fc puppet: Style fixes. 2022-02-18 13:25:04 -05:00
puppet.if policy: interfaces: doc: indent param blocks consistently 2021-07-02 12:19:25 +03:00
puppet.te puppet: Style fixes. 2022-02-18 13:25:04 -05:00
quota.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
quota.if policy: interfaces: doc: indent param blocks consistently 2021-07-02 12:19:25 +03:00
quota.te Drop module versioning. 2022-01-06 09:19:13 -05:00
rkhunter.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
rkhunter.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
rkhunter.te Drop module versioning. 2022-01-06 09:19:13 -05:00
rpm.fc Label /usr/libexec/packagekitd as apt_exec_t on debian 2020-07-27 13:26:06 +02:00
rpm.if work on SELint issues 2020-08-13 21:23:43 +02:00
rpm.te Drop module versioning. 2022-01-06 09:19:13 -05:00
samhain.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
samhain.if Update callers for "pid" to "runtime" interface rename. 2020-06-28 16:03:45 -04:00
samhain.te various: remove various mcs ranged transitions 2022-01-06 20:58:28 -05:00
sblim.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
sblim.if Update callers for "pid" to "runtime" interface rename. 2020-06-28 16:03:45 -04:00
sblim.te Drop module versioning. 2022-01-06 09:19:13 -05:00
shorewall.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
shorewall.if policy: interfaces: doc: indent param blocks consistently 2021-07-02 12:19:25 +03:00
shorewall.te Drop module versioning. 2022-01-06 09:19:13 -05:00
shutdown.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
shutdown.if shutdown: add tunable to control user exec domain access 2021-10-13 19:08:42 -04:00
shutdown.te Drop module versioning. 2022-01-06 09:19:13 -05:00
sosreport.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
sosreport.if policy: interfaces: doc: indent param blocks consistently 2021-07-02 12:19:25 +03:00
sosreport.te Drop module versioning. 2022-01-06 09:19:13 -05:00
su.fc Create / to /usr equivalence for bin, sbin, and lib, from Russell Coker. 2017-02-04 15:19:35 -05:00
su.if su: allow su to map SELinux status page 2021-12-21 10:46:27 +08:00
su.te Drop module versioning. 2022-01-06 09:19:13 -05:00
sudo.fc
sudo.if sudo: fixes for polyinstantiation 2022-03-23 10:57:57 -04:00
sudo.te Drop module versioning. 2022-01-06 09:19:13 -05:00
sxid.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
sxid.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
sxid.te Drop module versioning. 2022-01-06 09:19:13 -05:00
tboot.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
tboot.if Fix situations where require blocks in interfaces listed types not actually referenced by that interface 2020-01-24 08:18:55 -05:00
tboot.te Drop module versioning. 2022-01-06 09:19:13 -05:00
tmpreaper.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
tmpreaper.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
tmpreaper.te Drop module versioning. 2022-01-06 09:19:13 -05:00
tripwire.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
tripwire.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
tripwire.te Drop module versioning. 2022-01-06 09:19:13 -05:00
tzdata.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
tzdata.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
tzdata.te Drop module versioning. 2022-01-06 09:19:13 -05:00
updfstab.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
updfstab.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
updfstab.te Drop module versioning. 2022-01-06 09:19:13 -05:00
usbguard.fc usbguard: various fixes 2021-03-27 19:53:42 -04:00
usbguard.if Update callers for "pid" to "runtime" interface rename. 2020-06-28 16:03:45 -04:00
usbguard.te Drop module versioning. 2022-01-06 09:19:13 -05:00
usbmodules.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
usbmodules.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
usbmodules.te Drop module versioning. 2022-01-06 09:19:13 -05:00
usermanage.fc Support systems with a single /usr/bin directory 2017-04-15 20:49:07 +02:00
usermanage.if Make hide_broken_symptoms unconditional. 2022-02-16 12:04:21 -05:00
usermanage.te various: various userns capability permissions 2022-01-24 11:07:02 -05:00
vbetool.fc Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
vbetool.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
vbetool.te Drop module versioning. 2022-01-06 09:19:13 -05:00
vpn.fc Rename *_var_run_t types to *_runtime_t. 2019-09-30 20:02:43 -04:00
vpn.if Move all files out of the old contrib directory. 2018-06-23 10:38:58 -04:00
vpn.te Merge pull request #454 from jpds/rwnetlinksocketperms-typo 2022-01-11 15:04:31 -05:00