Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Sven Vermeulen <sven.vermeulen@××××××.be>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/contrib/
Date: Tue, 27 Nov 2012 19:16:29
Message-Id: 1354043526.134760e167ddc61a6b32c6f9e538cbed771b9516.SwifT@gentoo
1 commit: 134760e167ddc61a6b32c6f9e538cbed771b9516
2 Author: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
3 AuthorDate: Tue Nov 27 19:12:06 2012 +0000
4 Commit: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
5 CommitDate: Tue Nov 27 19:12:06 2012 +0000
6 URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=134760e1
7
8 Things that have been merged upstream
9
10 ---
11 policy/modules/contrib/asterisk.te | 7 -------
12 policy/modules/contrib/dovecot.fc | 4 ----
13 policy/modules/contrib/openvpn.fc | 4 ----
14 policy/modules/contrib/openvpn.te | 10 ----------
15 4 files changed, 0 insertions(+), 25 deletions(-)
16
17 diff --git a/policy/modules/contrib/asterisk.te b/policy/modules/contrib/asterisk.te
18 index 9dad905..5439f1c 100644
19 --- a/policy/modules/contrib/asterisk.te
20 +++ b/policy/modules/contrib/asterisk.te
21 @@ -153,13 +153,6 @@ miscfiles_read_localization(asterisk_t)
22 userdom_dontaudit_use_unpriv_user_fds(asterisk_t)
23 userdom_dontaudit_search_user_home_dirs(asterisk_t)
24
25 -ifdef(`distro_gentoo',`
26 - optional_policy(`
27 - # Sending voicemail message
28 - mta_system_content(asterisk_tmp_t)
29 - ')
30 -')
31 -
32 optional_policy(`
33 alsa_read_rw_config(asterisk_t)
34 ')
35
36 diff --git a/policy/modules/contrib/dovecot.fc b/policy/modules/contrib/dovecot.fc
37 index 2449986..c880070 100644
38 --- a/policy/modules/contrib/dovecot.fc
39 +++ b/policy/modules/contrib/dovecot.fc
40 @@ -34,7 +34,3 @@
41 /var/log/dovecot\.log.* gen_context(system_u:object_r:dovecot_var_log_t,s0)
42
43 /var/spool/dovecot(/.*)? gen_context(system_u:object_r:dovecot_spool_t,s0)
44 -
45 -ifdef(`distro_gentoo',`
46 -/etc/ssl/dovecot(/.*)? gen_context(system_u:object_r:dovecot_cert_t,s0)
47 -')
48
49 diff --git a/policy/modules/contrib/openvpn.fc b/policy/modules/contrib/openvpn.fc
50 index 1d12d94..300213f 100644
51 --- a/policy/modules/contrib/openvpn.fc
52 +++ b/policy/modules/contrib/openvpn.fc
53 @@ -10,7 +10,3 @@
54
55 /var/run/openvpn(/.*)? gen_context(system_u:object_r:openvpn_var_run_t,s0)
56 /var/run/openvpn\.client.* -- gen_context(system_u:object_r:openvpn_var_run_t,s0)
57 -
58 -ifdef(`distro_gentoo',`
59 -/var/log/openvpn-status\.log -- gen_context(system_u:object_r:openvpn_status_t,s0)
60 -')
61
62 diff --git a/policy/modules/contrib/openvpn.te b/policy/modules/contrib/openvpn.te
63 index afce479..9cfb0cf 100644
64 --- a/policy/modules/contrib/openvpn.te
65 +++ b/policy/modules/contrib/openvpn.te
66 @@ -38,11 +38,6 @@ logging_log_file(openvpn_var_log_t)
67 type openvpn_var_run_t;
68 files_pid_file(openvpn_var_run_t)
69
70 -ifdef(`distro_gentoo',`
71 - type openvpn_status_t;
72 - logging_log_file(openvpn_status_t)
73 -')
74 -
75 ########################################
76 #
77 # Local policy
78 @@ -136,11 +131,6 @@ sysnet_use_ldap(openvpn_t)
79
80 userdom_use_user_terminals(openvpn_t)
81
82 -ifdef(`distro_gentoo',`
83 - allow openvpn_t openvpn_status_t:file manage_file_perms;
84 - logging_log_filetrans(openvpn_t, openvpn_status_t, file, "openvpn-status.log")
85 -')
86 -
87 tunable_policy(`openvpn_enable_homedirs',`
88 userdom_read_user_home_content_files(openvpn_t)
89 ')
Report Message
Find on MARC Find on Google Groups