diff options
author | alee <alee@c9f7a03b-bd48-0410-a16d-cbbf54688b0b> | 2009-09-17 18:45:54 +0000 |
---|---|---|
committer | alee <alee@c9f7a03b-bd48-0410-a16d-cbbf54688b0b> | 2009-09-17 18:45:54 +0000 |
commit | 29a8f54172c5a4caebabeab0d23455b30158fdfe (patch) | |
tree | cb2efa20fa31f7ebee1c3332f26d9f5b3d53082e /pki/base/selinux | |
parent | 6f9829e498768c5e4233770e385ec8c3df5ba8d4 (diff) | |
download | pki-29a8f54172c5a4caebabeab0d23455b30158fdfe.tar.gz pki-29a8f54172c5a4caebabeab0d23455b30158fdfe.tar.xz pki-29a8f54172c5a4caebabeab0d23455b30158fdfe.zip |
Bugzilla Bug 524068 - rules needed for pki-tps and pki-ra startup on fc11
git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@791 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
Diffstat (limited to 'pki/base/selinux')
-rw-r--r-- | pki/base/selinux/src/pki.if | 4 | ||||
-rw-r--r-- | pki/base/selinux/src/pki.te | 2 |
2 files changed, 3 insertions, 3 deletions
diff --git a/pki/base/selinux/src/pki.if b/pki/base/selinux/src/pki.if index 305634cf4..4f2469b1d 100644 --- a/pki/base/selinux/src/pki.if +++ b/pki/base/selinux/src/pki.if @@ -482,7 +482,7 @@ template(`pki_tps_template',` allow pki_tps_t httpd_config_t:file { read getattr execute }; allow pki_tps_t httpd_exec_t:file entrypoint; allow pki_tps_t httpd_modules_t:lnk_file read; - allow pki_tps_t httpd_suexec_exec_t:file getattr; + allow pki_tps_t httpd_suexec_exec_t:file { getattr read execute }; # apache permissions apache_exec_modules(pki_tps_t) @@ -653,7 +653,7 @@ template(`pki_ra_template',` allow pki_ra_t httpd_config_t:file { read getattr execute }; allow pki_ra_t httpd_exec_t:file entrypoint; allow pki_ra_t httpd_modules_t:lnk_file read; - allow pki_ra_t httpd_suexec_exec_t:file getattr; + allow pki_ra_t httpd_suexec_exec_t:file { getattr read execute }; #apache permissions apache_read_config(pki_ra_t) diff --git a/pki/base/selinux/src/pki.te b/pki/base/selinux/src/pki.te index 26c2cc617..4acaa4624 100644 --- a/pki/base/selinux/src/pki.te +++ b/pki/base/selinux/src/pki.te @@ -1,4 +1,4 @@ -policy_module(pki,1.0.13) +policy_module(pki,1.0.14) attribute pki_ca_config; attribute pki_ca_executable; |