Tree - rpms/iptables - CentOS Git server

Blob History Raw

		ec5e2e	`From 2a45c01c4d3892871b3d3d6b67d10cb62abc561e Mon Sep 17 00:00:00 2001`
		ec5e2e	`From: Phil Sutter <psutter@redhat.com>`
		ec5e2e	`Date: Fri, 16 Jul 2021 21:51:49 +0200`
		ec5e2e	`Subject: [PATCH] extensions: SECMARK: Use a better context in test case`
		ec5e2e
		ec5e2e	`RHEL SELinux policies don't allow setting`
		ec5e2e	`system_u:object_r:firewalld_exec_t:s0 context. Use one instead which has`
		ec5e2e	`'packet_type' attribute (identified via`
		ec5e2e	`'seinfo -xt \| grep packet_type').`
		ec5e2e	`---`
		ec5e2e	`extensions/libxt_SECMARK.t \| 2 +-`
		ec5e2e	`1 file changed, 1 insertion(+), 1 deletion(-)`
		ec5e2e
		ec5e2e	`diff --git a/extensions/libxt_SECMARK.t b/extensions/libxt_SECMARK.t`
		ec5e2e	`index 39d4c09348bf4..295e7a7244902 100644`
		ec5e2e	`--- a/extensions/libxt_SECMARK.t`
		ec5e2e	`+++ b/extensions/libxt_SECMARK.t`
		ec5e2e	`@@ -1,4 +1,4 @@`
		ec5e2e	`:INPUT,FORWARD,OUTPUT`
		ec5e2e	`*security`
		ec5e2e	`--j SECMARK --selctx system_u:object_r:firewalld_exec_t:s0;=;OK`
		ec5e2e	`+-j SECMARK --selctx system_u:object_r:ssh_server_packet_t:s0;=;OK`
		ec5e2e	`-j SECMARK;;FAIL`
		ec5e2e	`--`
		ec5e2e	`2.31.1`
		ec5e2e