From 3dce5f45c073a6aea52557d7bf80fe8c4d08cdb2 Mon Sep 17 00:00:00 2001 From: Zdenek Pytela Date: Jun 08 2024 18:36:09 +0000 Subject: * Fri Jun 07 2024 Zdenek Pytela - 41.2-1 - Allow postfix_domain connect to postgresql over a unix socket - Dontaudit systemd-coredump sys_admin capability - Allow all domains read and write z90crypt device - Allow tpm2 generator setfscreate - Allow systemd (PID 1) manage systemd conf files - Allow pulseaudio map its runtime files - Update policy for getty-generator - Allow systemd-hwdb send messages to kernel unix datagram sockets - Allow systemd-machined manage runtime sockets --- diff --git a/changelog b/changelog index 7b37f65..91c30bd 100644 --- a/changelog +++ b/changelog @@ -1,3 +1,14 @@ +* Fri Jun 07 2024 Zdenek Pytela - 41.2-1 +- Allow postfix_domain connect to postgresql over a unix socket +- Dontaudit systemd-coredump sys_admin capability +- Allow all domains read and write z90crypt device +- Allow tpm2 generator setfscreate +- Allow systemd (PID 1) manage systemd conf files +- Allow pulseaudio map its runtime files +- Update policy for getty-generator +- Allow systemd-hwdb send messages to kernel unix datagram sockets +- Allow systemd-machined manage runtime sockets + * Mon Jun 03 2024 Zdenek Pytela - 41.1-1 - Allow fstab-generator create unit file symlinks - Update policy for cryptsetup-generator diff --git a/selinux-policy.spec b/selinux-policy.spec index de1ff98..d1b9cc5 100644 --- a/selinux-policy.spec +++ b/selinux-policy.spec @@ -1,6 +1,6 @@ # github repo with selinux-policy sources %global giturl https://github.com/fedora-selinux/selinux-policy -%global commit 351a598ecbc0717926181e0a88d07878a12e7301 +%global commit 52d7b9cd0bc95a912a7ac5b5a0ba9e2e0af9ae1d %global shortcommit %(c=%{commit}; echo ${c:0:7}) %define distro redhat @@ -23,7 +23,7 @@ %define CHECKPOLICYVER 3.2 Summary: SELinux policy configuration Name: selinux-policy -Version: 41.1 +Version: 41.2 Release: 1%{?dist} License: GPL-2.0-or-later Source: %{giturl}/archive/%{commit}/%{name}-%{shortcommit}.tar.gz diff --git a/sources b/sources index 94ce1c2..d6d963c 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (selinux-policy-351a598.tar.gz) = 28c58a1d5a79c6fce59df98236c7be03c41a01d9d026587850f33508baa3f7439c7d8ea9e85d96e060d4b332d2ad35d0119de05cd96d82bd30f5cd7ca9cfdaac +SHA512 (selinux-policy-52d7b9c.tar.gz) = f1f0aeedb4d0e51c20433963aaad9446dfa24b29e49edd595fca70ea6790f1c5c319fdb3c0c4379adec053b5196a4aca174a7a34d914dc85c5bbdcfa022d3aec SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4 -SHA512 (container-selinux.tgz) = d16e7f79f367f3453f5eeac24d0292fe8b9b3e9a4e7a6fcdbf554dac0f73341d0dd9cd6ca4f393d466ae1c84f55468b9a51ed824b346badd2c9b26394cf750cf +SHA512 (container-selinux.tgz) = 1b3300c80eff0dd408efa737e071057d3d4c7c47f1303cca622d84bfd0a0a04e4aaa624c8a68ee3146fb1bcd21723350f926fe875046f89ae22825a2623cd8b3