refpolicy 2:2.20161023.1-6 source package in Ubuntu
Changelog
refpolicy (2:2.20161023.1-6) unstable; urgency=medium
* Label /var/lib/unbound as named_cache_t, closes: #740657
* Merge patch for gbp.conf from cgzones <email address hidden>
closes: #849459
* Merge patch from cgzones <email address hidden> to add new .basemodules
file. Closes: #849460
* Make the package build fail when a file is missing. Closes: #849461
* Replaced domain_auto_trans with domain_auto_transition_pattern.
Closes: #849463
* New type systemd_machined_var_run_t for /run/systemd/machines
* Allow initrc_t to get the status of null device service files (for
symlinks) and to reload systemd_unit_t services.
* Allow systemd_logind_t to manage user_runtime_t directories.
allow it sys_admin capability. Allow it to list udev_var_run_t dirs for
/run/udev/tags/power-switch.
* Label /run/console-setup as udev_var_run_t
* Label lvmetad as lvm_exec_t
* Made it conflict with mcstrans because we currently can't get mcstrans,
dbus, and systemd to work together.
* Allow systemd_logind_t to create /run/systemd/inhibit and to manage
systemd_logind_var_run_t dirs and mount/umount,relabelfrom tmpfs_t
* Allow systemd_machined_t to manage symlinks in it's pid dir
* Allow systemd_machined_t to stat tmpfs_t and cgroup_t filesystems
* Updated monit patch from cgzones.
* Allow policykit_t to stat tmpfs_t and cgroup_t filesystems and to read
urandom
* Change auth_login_pgm_domain() to include writing to sessions fifo.
and searching user_runtime_t
* Allow systemd_logind_t and systemd_machined_t to read initrc_t files to
get cgroup and sessionid
* Allow systemd_logind_t to read xserver_t files to get cgroup and sessionid
* Allow system_mail_t to access unix_stream_sockets inherited from init
for error messages on startup
* Allow system_cronjob_t to get systemd unit status
* Allow logrotate to talk to dbus and talk to the private systemd socket for
systemctl
* Allow console_device_t to associate with devpts_t:filesystem for /dev/pts/0
* Allow systemd_logind_t to read all users state for cgroup and sessionid
files
* Label /var/run/sddm and /usr/bin/sddm
* Allow systemd_logind_t to talk to policykit_t and xserver_t by dbus
* Allow systemd_logind_t to send messages to initrc_t by dbus
* Allow policykit_t to send dbus messages to all userdomains
-- Russell Coker <email address hidden> Sun, 01 Jan 2017 15:33:26 +1100
Upload details
- Uploaded by:
- Debian SELinux maintainers
- Uploaded to:
- Sid
- Original maintainer:
- Debian SELinux maintainers
- Architectures:
- all
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| refpolicy_2.20161023.1-6.dsc | 2.4 KiB | 7bdaff3633d31dcc046c08285cb17665a7360664e3b58eb8b9012a3c21cf22d5 |
| refpolicy_2.20161023.1.orig.tar.bz2 | 705.6 KiB | f056de551c17bbbd2775dfa63a94434538548c90ed1e0f0b6c2be6bf9b123e4f |
| refpolicy_2.20161023.1-6.debian.tar.xz | 93.2 KiB | cd1bc6d6eec8849abf1fc2eecd29949e18618e2c46a3f9f7eb5a1e77a80c1363 |
Available diffs
No changes file available.
Binary packages built by this source
- selinux-policy-default: No summary available for selinux-policy-default in ubuntu zesty.
No description available for selinux-
policy- default in ubuntu zesty.
- selinux-policy-dev: No summary available for selinux-policy-dev in ubuntu zesty.
No description available for selinux-policy-dev in ubuntu zesty.
- selinux-policy-doc: No summary available for selinux-policy-doc in ubuntu zesty.
No description available for selinux-policy-doc in ubuntu zesty.
- selinux-policy-mls: No summary available for selinux-policy-mls in ubuntu zesty.
No description available for selinux-policy-mls in ubuntu zesty.
- selinux-policy-src: No summary available for selinux-policy-src in ubuntu zesty.
No description available for selinux-policy-src in ubuntu zesty.
