[selinux-policy: 2730/3172] AFS patch from Dan Walsh.
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 23:02:56 UTC 2010
commit 5c942ceb83ce7b8a3d88618a8d588580afb4036d
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Thu Jun 10 08:08:23 2010 -0400
AFS patch from Dan Walsh.
policy/modules/services/afs.te | 19 ++++++++++---------
1 files changed, 10 insertions(+), 9 deletions(-)
---
diff --git a/policy/modules/services/afs.te b/policy/modules/services/afs.te
index 81af7b5..3a11a46 100644
--- a/policy/modules/services/afs.te
+++ b/policy/modules/services/afs.te
@@ -1,5 +1,5 @@
-policy_module(afs, 1.6.0)
+policy_module(afs, 1.6.1)
########################################
#
@@ -81,14 +81,6 @@ manage_files_pattern(afs_t, afs_cache_t, afs_cache_t)
manage_dirs_pattern(afs_t, afs_cache_t, afs_cache_t)
files_var_filetrans(afs_t, afs_cache_t, { file dir })
-files_mounton_mnt(afs_t)
-files_read_etc_files(afs_t)
-files_read_usr_files(afs_t)
-files_rw_etc_runtime_files(afs_t)
-
-fs_getattr_xattr_fs(afs_t)
-fs_mount_nfs(afs_t)
-
kernel_rw_afs_state(afs_t)
corenet_all_recvfrom_unlabeled(afs_t)
@@ -101,6 +93,15 @@ corenet_tcp_sendrecv_all_ports(afs_t)
corenet_udp_sendrecv_all_ports(afs_t)
corenet_udp_bind_generic_node(afs_t)
+files_mounton_mnt(afs_t)
+files_read_etc_files(afs_t)
+files_read_usr_files(afs_t)
+files_rw_etc_runtime_files(afs_t)
+
+fs_getattr_xattr_fs(afs_t)
+fs_mount_nfs(afs_t)
+fs_read_nfs_symlinks(afs_t)
+
logging_send_syslog_msg(afs_t)
miscfiles_read_localization(afs_t)
More information about the scm-commits
mailing list