[selinux-policy/f19] - Fix definition of sandbox.disabled to sandbox.pp.disabled

Miroslav Grepl mgrepl at fedoraproject.org
Tue Jul 9 19:47:28 UTC 2013 

commit 4d43b11f337254918171dd7eb95dcf2157890852
Author: Miroslav Grepl <mgrepl at redhat.com>
Date:   Tue Jul 9 21:47:13 2013 +0200

    - Fix definition of sandbox.disabled to sandbox.pp.disabled

 policy-rawhide-base.patch |    4 ++--
 selinux-policy.spec       |    3 +++
 2 files changed, 5 insertions(+), 2 deletions(-)
---
diff --git a/policy-rawhide-base.patch b/policy-rawhide-base.patch
index b2f2392..b74e6f2 100644
--- a/policy-rawhide-base.patch
+++ b/policy-rawhide-base.patch
@@ -3042,7 +3042,7 @@ index 7590165..19aaaed 100644
 +	fs_mounton_fusefs(seunshare_domain)
 +')
 diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc
-index 644d4d7..38a8a2d 100644
+index 644d4d7..51181b8 100644
 --- a/policy/modules/kernel/corecommands.fc
 +++ b/policy/modules/kernel/corecommands.fc
 @@ -1,9 +1,10 @@
@@ -3229,7 +3229,7 @@ index 644d4d7..38a8a2d 100644
 +/usr/lib/security/pam_krb5/pam_krb5_storetmp -- gen_context(system_u:object_r:bin_t,s0)
  /usr/lib/sftp-server		--	gen_context(system_u:object_r:bin_t,s0)
 -/usr/lib/vte/gnome-pty-helper	--	gen_context(system_u:object_r:bin_t,s0)
-+/usr/lib/systemd/system-sleep/(.*)? 	gen_context(system_u:object_r:bin_t,s0)
++/usr/lib/systemd/system-sleep(/.*)? 	gen_context(system_u:object_r:bin_t,s0)
 +/usr/lib/vte/gnome-pty-helper 	--	gen_context(system_u:object_r:bin_t,s0)
 +/usr/lib/yaboot/addnote	      	--	gen_context(system_u:object_r:bin_t,s0)
 +/usr/lib/udev/[^/]*			--	gen_context(system_u:object_r:bin_t,s0)
diff --git a/selinux-policy.spec b/selinux-policy.spec
index 293c10b..225db5c 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -539,6 +539,9 @@ SELinux Reference policy mls base module.
 %endif
 
 %changelog
+* Tue Jul 9 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-62
+- Fix definition of sandbox.disabled to sandbox.pp.disabled
+
 * Mon Jul 8 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-61
 - Allow mdamd to execute systemctl
 - Allow mdadm to read /dev/kvm

More information about the scm-commits mailing list