nnd/selinux-refpolicy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
67394d078c
selinux-refpolicy/policy
History
Fabrice Fontaine 67394d078c policy/modules/services/wireguard.te: make iptables optional 
Make iptables optional to avoid the following build failure raised since
version 2.20210908 and
7f1a7b1cac:

 Compiling targeted policy.33
 env LD_LIBRARY_PATH="/tmp/instance-0/output-1/host/lib:/tmp/instance-0/output-1/host/usr/lib" /tmp/instance-0/output-1/host/usr/bin/checkpolicy -c 33 -U deny -S -O -E policy.conf -o policy.33
 policy/modules/services/wireguard.te:66:ERROR 'type iptables_exec_t is not within scope' at token ';' on line 591892:
 #line 66
	allow wireguard_t iptables_exec_t:file { getattr open map read execute ioctl };
 checkpolicy:  error(s) encountered while parsing configuration
 make[1]: *** [Rules.monolithic:79: policy.33] Error 1

Fixes:
 - http://autobuild.buildroot.org/results/a4223accc6adb70b06fd4e74ca4f28484446b6fa

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
2021-09-22 23:55:59 +02:00
..
flask access_vectors: Add new capabilities to cap2 2020-10-15 20:55:35 -04:00
modules policy/modules/services/wireguard.te: make iptables optional 2021-09-22 23:55:59 +02:00
support file_patterns.spt: Add a mmap_manage_files_pattern(). 2021-01-28 10:51:39 -05:00
constraints whitespace cleanup 2020-08-13 14:34:57 +02:00
context_defaults
global_booleans
global_tunables
mcs
mls
policy_capabilities Correct some misspellings 2020-06-05 15:38:43 +02:00
users