652ddc * Fri Feb 11 2022 Zdenek Pytela <zpytela@redhat.com> - 36.2-1

Authored and Committed by Zdenek Pytela 2 years ago
    * Fri Feb 11 2022 Zdenek Pytela <zpytela@redhat.com> - 36.2-1
    - Allow sysadm_passwd_t to relabel passwd and group files
    - Allow confined sysadmin to use tool vipw
    - Allow login_userdomain map /var/lib/directories
    - Allow login_userdomain watch library and fonts dirs
    - Allow login_userdomain watch system configuration dirs
    - Allow login_userdomain read systemd runtime files
    - Allow ctdb create cluster logs
    - Allow alsa bind mixer controls to led triggers
    - New policy for insight-client
    - Add mctp_socket security class and access vectors
    - Fix koji repo URL pattern
    - Update chronyd_pid_filetrans() to allow create dirs
    - Update NetworkManager-dispatcher policy
    - Allow unconfined to run virtd bpf
    - Allow nm-privhelper setsched permission and send system logs
    - Add the map permission to common_anon_inode_perm permission set
    - Rename userfaultfd_anon_inode_perms to common_inode_perms
    - Allow confined users to use kinit,klist and etc.
    - Allow rhsmcertd create rpm hawkey logs with correct label
    
        
file modified
+23 -2
file modified
+2 -2