summaryrefslogtreecommitdiffstats
path: root/patches/pki-core-selinux-f17-1.patch
diff options
context:
space:
mode:
Diffstat (limited to 'patches/pki-core-selinux-f17-1.patch')
-rw-r--r--patches/pki-core-selinux-f17-1.patch36
1 files changed, 0 insertions, 36 deletions
diff --git a/patches/pki-core-selinux-f17-1.patch b/patches/pki-core-selinux-f17-1.patch
deleted file mode 100644
index 3ee106400..000000000
--- a/patches/pki-core-selinux-f17-1.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-diff --git a/pki/base/selinux/src/pki.if b/pki/base/selinux/src/pki.if
-index 0709176..20dfc17 100644
---- a/pki/base/selinux/src/pki.if
-+++ b/pki/base/selinux/src/pki.if
-@@ -206,6 +206,21 @@ template(`pki_ca_template',`
- optional_policy(`
- unconfined_domain($1_script_t)
- ')
-+
-+ # tomcat6 init scripts do runuser and touch lockfile
-+ allow $1_t self:capability { setuid chown setgid fowner audit_write dac_override };
-+ allow $1_t self:netlink_audit_socket { nlmsg_relay create read write };
-+ consoletype_exec($1_t)
-+ fs_read_hugetlbfs_files($1_t)
-+ hostname_exec($1_t)
-+ kernel_read_kernel_sysctls($1_t)
-+ fs_getattr_xattr_fs($1_t)
-+
-+ # java (mislabeled as lib_t?) calls build_classpath
-+ libs_exec_lib_files($1_t)
-+
-+ selinux_get_enforce_mode($1_t)
-+
- ')
-
- ########################################
-diff --git a/pki/base/selinux/src/pki.te b/pki/base/selinux/src/pki.te
-index 7f6e657..dab02d4 100644
---- a/pki/base/selinux/src/pki.te
-+++ b/pki/base/selinux/src/pki.te
-@@ -1,4 +1,4 @@
--policy_module(pki,10.0.2)
-+policy_module(pki,10.0.4)
-
- attribute pki_ca_config;
- attribute pki_ca_executable;
generated by cgit (git 2.34.1) at 2024-06-07 19:51:47 +0000