[selinux-policy] * Tue May 13 2014 Miroslav Grepl<mgrepl at redhat.com> 3.13.1- - Add missing dyntransition for sandbox_

[Miroslav Grepl]

commit dfbb9aca62d9b1b791bf0516a71740b78ee2a014
Author: Miroslav Grepl <mgrepl at redhat.com>
Date:   Tue May 13 14:42:28 2014 +0200

    * Tue May 13 2014 Miroslav Grepl<mgrepl at redhat.com> 3.13.1-
    - Add missing dyntransition for sandbox_x_domain

 policy-rawhide-contrib.patch |    5 +++--
 selinux-policy.spec          |    3 +++
 2 files changed, 6 insertions(+), 2 deletions(-)
---
diff --git a/policy-rawhide-contrib.patch b/policy-rawhide-contrib.patch
index 617cd04..960c0cc 100644
--- a/policy-rawhide-contrib.patch
+++ b/policy-rawhide-contrib.patch
@@ -85948,10 +85948,10 @@ index 0000000..6caef63
 +/usr/share/sandbox/start --	gen_context(system_u:object_r:sandbox_exec_t,s0)
 diff --git a/sandboxX.if b/sandboxX.if
 new file mode 100644
-index 0000000..3258f45
+index 0000000..03bdcef
 --- /dev/null
 +++ b/sandboxX.if
-@@ -0,0 +1,394 @@
+@@ -0,0 +1,395 @@
 +
 +## <summary>policy for sandboxX </summary>
 +
@@ -85980,6 +85980,7 @@ index 0000000..3258f45
 +	')
 +
 +	allow $1 sandbox_x_domain:process { signal_perms transition };
++	allow $1 sandbox_x_domain:process dyntransition;
 +	dontaudit $1 sandbox_x_domain:process { noatsecure siginh rlimitinh };
 +	allow sandbox_x_domain $1:process { sigchld signull };
 +	allow { sandbox_x_domain sandbox_xserver_t } $1:fd use;
diff --git a/selinux-policy.spec b/selinux-policy.spec
index c7e40ed..1e24819 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -588,6 +588,9 @@ SELinux Reference policy mls base module.
 %endif
 
 %changelog
+* Tue May 13 2014 Miroslav Grepl<mgrepl at redhat.com> 3.13.1-53
+- Add missing dyntransition for sandbox_x_domain
+
 * Wed May 7 2014 Miroslav Grepl<mgrepl at redhat.com> 3.13.1-52
 - More rules for gears and openshift
 - Added iotop policy. Thanks William Brown