diff options
| author | alee <alee@c9f7a03b-bd48-0410-a16d-cbbf54688b0b> | 2009-06-15 15:36:27 +0000 |
|---|---|---|
| committer | alee <alee@c9f7a03b-bd48-0410-a16d-cbbf54688b0b> | 2009-06-15 15:36:27 +0000 |
| commit | eb98f2c07471d01b2b664d17df5353382ce07bfe (patch) | |
| tree | a593645d4cfc6ab3ce5794bcec224c6f7636c7fa | |
| parent | f5524e56947c83af29c3fcb3fccccfcaa8ceee8b (diff) | |
selinux svc when restarting RA
git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@611 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
| -rw-r--r-- | pki/base/selinux/src/pki.if | 4 | ||||
| -rw-r--r-- | pki/base/selinux/src/pki.te | 2 | ||||
| -rw-r--r-- | pki/dogtag/selinux/pki-selinux.spec | 4 |
3 files changed, 6 insertions, 4 deletions
diff --git a/pki/base/selinux/src/pki.if b/pki/base/selinux/src/pki.if index 6c34cb57f..eec301113 100644 --- a/pki/base/selinux/src/pki.if +++ b/pki/base/selinux/src/pki.if @@ -492,7 +492,7 @@ template(`pki_tps_template',` allow pki_tps_t lib_t:file execute_no_trans; #fowner needed for chmod - allow pki_tps_t self:capability { setuid sys_nice setgid dac_override fowner}; + allow pki_tps_t self:capability { setuid sys_nice setgid dac_override fowner fsetid}; allow pki_tps_t self:process { setsched signal getsched signull execstack execmem}; allow pki_tps_t self:sem all_sem_perms; allow pki_tps_t self:tcp_socket create_stream_socket_perms; @@ -661,7 +661,7 @@ template(`pki_ra_template',` allow pki_ra_t lib_t:file execute_no_trans; - allow pki_ra_t self:capability { setuid sys_nice setgid dac_override fowner}; + allow pki_ra_t self:capability { setuid sys_nice setgid dac_override fowner fsetid}; allow pki_ra_t self:process { setsched getsched signal signull execstack execmem}; allow pki_ra_t self:sem all_sem_perms; allow pki_ra_t self:tcp_socket create_stream_socket_perms; diff --git a/pki/base/selinux/src/pki.te b/pki/base/selinux/src/pki.te index 0f00c99ea..4af04a22b 100644 --- a/pki/base/selinux/src/pki.te +++ b/pki/base/selinux/src/pki.te @@ -1,4 +1,4 @@ -policy_module(pki,1.0.9) +policy_module(pki,1.0.10) attribute pki_ca_config; attribute pki_ca_executable; diff --git a/pki/dogtag/selinux/pki-selinux.spec b/pki/dogtag/selinux/pki-selinux.spec index 080b77afe..3da0dabb8 100644 --- a/pki/dogtag/selinux/pki-selinux.spec +++ b/pki/dogtag/selinux/pki-selinux.spec @@ -33,7 +33,7 @@ ## Package Header Definitions %define base_name %{base_prefix}-%{base_component} %define base_version 1.1.0 -%define base_release 7 +%define base_release 8 %define base_group System Environment/Shells %define base_vendor Red Hat, Inc. %define base_license GPLv2 with exceptions @@ -249,6 +249,8 @@ fi ############################################################################### %changelog +* Mon Jun 15 2009 Ade Lee <alee@redhat.com> 1.1.0-8 +- Bugzilla Bug 504765 - more selinux messages when restarting RA * Tue Jun 9 2009 Ade Lee <alee@redhat.com> 1.1.0-7 - Bugzilla Bug 504765 - selinux messages when restarting RA * Fri May 29 2009 Ade Lee <alee@redhat.com> 1.1.0-6 |