diff options
| author |   Sven Vermeulen <swift@gentoo.org> | 2011-11-12 20:53:53 +0000 |
|---|---|---|
| committer | Sven Vermeulen <swift@gentoo.org> | 2011-11-12 20:53:53 +0000 |
| commit | c9a92a863c67335aaab995f3a7fa3cb2374103cd (patch) | |
| tree | c40a6f1a1345f8826a762554a8b4478ce9f1798d /sec-policy/selinux-vde | |
| parent | whitespace (diff) | |
| download | gentoo-2-c9a92a863c67335aaab995f3a7fa3cb2374103cd.tar.gz gentoo-2-c9a92a863c67335aaab995f3a7fa3cb2374103cd.tar.bz2 gentoo-2-c9a92a863c67335aaab995f3a7fa3cb2374103cd.zip | |
Removing the SELinux 2.20101213 policies
(Portage version: 2.1.10.11/cvs/Linux x86_64)
Diffstat (limited to 'sec-policy/selinux-vde')
| -rw-r--r-- | sec-policy/selinux-vde/ChangeLog | 6 | ||||
| -rw-r--r-- | sec-policy/selinux-vde/files/add-services-vde.patch | 69 | ||||
| -rw-r--r-- | sec-policy/selinux-vde/selinux-vde-2.20101213.ebuild | 15 |
3 files changed, 5 insertions, 85 deletions
diff --git a/sec-policy/selinux-vde/ChangeLog b/sec-policy/selinux-vde/ChangeLog index df44ee22cdb8..6e211c1553b4 100644 --- a/sec-policy/selinux-vde/ChangeLog +++ b/sec-policy/selinux-vde/ChangeLog @@ -1,6 +1,10 @@ # ChangeLog for sec-policy/selinux-vde # Copyright 1999-2011 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-vde/ChangeLog,v 1.4 2011/10/23 12:42:35 swift Exp $ +# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-vde/ChangeLog,v 1.5 2011/11/12 20:53:11 swift Exp $ + + 12 Nov 2011; <swift@gentoo.org> -selinux-vde-2.20101213.ebuild, + -files/add-services-vde.patch: + Removing old policies 23 Oct 2011; <swift@gentoo.org> selinux-vde-2.20110726-r1.ebuild: Stabilization (tracker #384231) diff --git a/sec-policy/selinux-vde/files/add-services-vde.patch b/sec-policy/selinux-vde/files/add-services-vde.patch deleted file mode 100644 index df49d872b1cc..000000000000 --- a/sec-policy/selinux-vde/files/add-services-vde.patch +++ /dev/null @@ -1,69 +0,0 @@ ---- services/vde.te 1970-01-01 01:00:00.000000000 +0100 -+++ services/vde.te 2011-01-22 22:20:13.375000222 +0100 -@@ -0,0 +1,56 @@ -+policy_module(vde, 0.0.1) -+ -+######################################## -+# -+# Declarations -+# -+ -+type vde_t; -+type vde_exec_t; -+init_daemon_domain(vde_t, vde_exec_t) -+ -+type vde_initrc_exec_t; -+init_script_file(vde_initrc_exec_t) -+ -+type vde_conf_t; -+files_type(vde_conf_t); -+ -+type vde_var_lib_t; -+files_type(vde_var_lib_t) -+ -+type vde_var_run_t; -+files_pid_file(vde_var_run_t) -+ -+type vde_tmp_t; -+files_tmp_file(vde_tmp_t) -+ -+######################################## -+# -+# Local policy -+# -+ -+allow vde_t self:process { signal_perms getcap setcap }; -+allow vde_t self:capability { chown net_admin dac_override fowner fsetid }; -+ -+allow vde_t vde_tmp_t:sock_file manage_sock_file_perms; -+allow vde_t self:unix_stream_socket { create_stream_socket_perms connectto }; -+allow vde_t self:unix_dgram_socket create_socket_perms; -+files_tmp_filetrans(vde_t, vde_tmp_t, sock_file) -+ -+manage_dirs_pattern(vde_t, vde_var_run_t, vde_var_run_t) -+manage_files_pattern(vde_t, vde_var_run_t, vde_var_run_t) -+manage_sock_files_pattern(vde_t, vde_var_run_t, vde_var_run_t) -+files_pid_filetrans(vde_t, vde_var_run_t, { dir file sock_file unix_dgram_socket }) -+ -+files_read_etc_files(vde_t) -+ -+allow vde_t vde_conf_t:dir list_dir_perms; -+read_files_pattern(vde_t, vde_conf_t, vde_conf_t) -+read_lnk_files_pattern(vde_t, vde_conf_t, vde_conf_t) -+ -+domain_use_interactive_fds(vde_t) -+userdom_use_user_terminals(vde_t) -+miscfiles_read_localization(vde_t) -+corenet_rw_tun_tap_dev(vde_t) -+ -+logging_send_syslog_msg(vde_t) ---- services/vde.fc 1970-01-01 01:00:00.000000000 +0100 -+++ services/vde.fc 2011-01-22 21:23:05.129000146 +0100 -@@ -0,0 +1,7 @@ -+/etc/init.d/vde -- gen_context(system_u:object_r:vde_initrc_exec_t,s0) -+/usr/bin/vde_switch -- gen_context(system_u:object_r:vde_exec_t,s0) -+/usr/sbin/vde_tunctl -- gen_context(system_u:object_r:vde_exec_t,s0) -+/etc/vde2(/.*)? gen_context(system_u:object_r:vde_conf_t,s0) -+/etc/vde2/libvdemgmt(/.*)? gen_context(system_u:object_r:vde_conf_t,s0) -+/var/run/vde\.ctl(/.*)? gen_context(system_u:object_r:vde_var_run_t,s0) -+/tmp/vde.[0-9-]* -s gen_context(system_u:object_r:vde_tmp_t,s0) diff --git a/sec-policy/selinux-vde/selinux-vde-2.20101213.ebuild b/sec-policy/selinux-vde/selinux-vde-2.20101213.ebuild deleted file mode 100644 index d3fe4bb899c0..000000000000 --- a/sec-policy/selinux-vde/selinux-vde-2.20101213.ebuild +++ /dev/null @@ -1,15 +0,0 @@ -# Copyright 1999-2011 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-vde/selinux-vde-2.20101213.ebuild,v 1.2 2011/06/02 13:07:43 blueness Exp $ - -IUSE="" - -MODS="vde" - -inherit selinux-policy-2 - -DESCRIPTION="SELinux policy for Virtual Distributed Ethernet switch" - -KEYWORDS="amd64 x86" - -POLICY_PATCH="${FILESDIR}/add-services-vde.patch" |