From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-commits+bounces-768043-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id D081E138A1A
	for <garchives@archives.gentoo.org>; Thu, 29 Jan 2015 20:53:11 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 06D2AE0864;
	Thu, 29 Jan 2015 20:53:10 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 44E6BE085E
	for <gentoo-commits@lists.gentoo.org>; Thu, 29 Jan 2015 20:53:09 +0000 (UTC)
Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by smtp.gentoo.org (Postfix) with ESMTPS id 474CD3406A2
	for <gentoo-commits@lists.gentoo.org>; Thu, 29 Jan 2015 20:53:08 +0000 (UTC)
Received: from localhost.localdomain (localhost [127.0.0.1])
	by oystercatcher.gentoo.org (Postfix) with ESMTP id 0445A109D3
	for <gentoo-commits@lists.gentoo.org>; Thu, 29 Jan 2015 20:53:07 +0000 (UTC)
From: "Sven Vermeulen" <swift@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Content-Transfer-Encoding: 8bit
Content-type: text/plain; charset=UTF-8
Reply-To: gentoo-dev@lists.gentoo.org, "Sven Vermeulen" <swift@gentoo.org>
Message-ID: <1422564663.9858e2074793ca61aed6d17f785dfe60ac9a6d0c.swift@gentoo>
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/contrib/
X-VCS-Repository: proj/hardened-refpolicy
X-VCS-Files: policy/modules/contrib/afs.fc policy/modules/contrib/afs.te
X-VCS-Directories: policy/modules/contrib/
X-VCS-Committer: swift
X-VCS-Committer-Name: Sven Vermeulen
X-VCS-Revision: 9858e2074793ca61aed6d17f785dfe60ac9a6d0c
X-VCS-Branch: master
Date: Thu, 29 Jan 2015 20:53:07 +0000 (UTC)
Precedence: bulk
List-Post: <mailto:gentoo-commits@lists.gentoo.org>
List-Help: <mailto:gentoo-commits+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-commits+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-commits+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-commits.gentoo.org>
X-BeenThere: gentoo-commits@lists.gentoo.org
X-Archives-Salt: 68ed1e74-3cf6-4f97-a159-446c63cc180e
X-Archives-Hash: 146e96316d03684ee2d789531f713917

commit:     9858e2074793ca61aed6d17f785dfe60ac9a6d0c
Author:     Dominick Grift <dac.override <AT> gmail <DOT> com>
AuthorDate: Mon Jan  5 17:05:06 2015 +0000
Commit:     Sven Vermeulen <swift <AT> gentoo <DOT> org>
CommitDate: Thu Jan 29 20:51:03 2015 +0000
URL:        http://sources.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=9858e207

Module version bump for afs fixes from Chas Williams.

---
 policy/modules/contrib/afs.fc |  1 -
 policy/modules/contrib/afs.te | 18 +++++++++---------
 2 files changed, 9 insertions(+), 10 deletions(-)

diff --git a/policy/modules/contrib/afs.fc b/policy/modules/contrib/afs.fc
index 279b787..c40fe9a 100644
--- a/policy/modules/contrib/afs.fc
+++ b/policy/modules/contrib/afs.fc
@@ -47,4 +47,3 @@
 /var/cache/(open)?afs(/.*)?	gen_context(system_u:object_r:afs_cache_t,s0)
 
 /vicep[a-z][a-z]?(/.*)? gen_context(system_u:object_r:afs_files_t,s0)
-

diff --git a/policy/modules/contrib/afs.te b/policy/modules/contrib/afs.te
index 6ba667d..69067e3 100644
--- a/policy/modules/contrib/afs.te
+++ b/policy/modules/contrib/afs.te
@@ -1,4 +1,4 @@
-policy_module(afs, 1.9.0)
+policy_module(afs, 1.9.1)
 
 ########################################
 #
@@ -135,13 +135,13 @@ corenet_udp_bind_afs_bos_port(afs_bosserver_t)
 corenet_sendrecv_afs_bos_server_packets(afs_bosserver_t)
 corenet_udp_sendrecv_afs_bos_port(afs_bosserver_t)
 
+dev_read_urand(afs_bosserver_t)
+
 files_list_home(afs_bosserver_t)
 files_read_usr_files(afs_bosserver_t)
 
 seutil_read_config(afs_bosserver_t)
 
-dev_read_urand(afs_bosserver_t)
-
 ########################################
 #
 # fileserver local policy
@@ -190,6 +190,8 @@ corenet_udp_bind_afs_fs_port(afs_fsserver_t)
 corenet_tcp_sendrecv_afs_fs_port(afs_fsserver_t)
 corenet_udp_sendrecv_afs_fs_port(afs_fsserver_t)
 
+dev_read_urand(afs_fsserver_t)
+
 files_read_etc_runtime_files(afs_fsserver_t)
 files_list_home(afs_fsserver_t)
 files_read_usr_files(afs_fsserver_t)
@@ -208,8 +210,6 @@ seutil_read_config(afs_fsserver_t)
 
 userdom_dontaudit_use_user_terminals(afs_fsserver_t)
 
-dev_read_urand(afs_fsserver_t)
-
 ########################################
 #
 # kaserver local policy
@@ -278,10 +278,10 @@ corenet_udp_bind_generic_node(afs_ptserver_t)
 corenet_udp_bind_afs_pt_port(afs_ptserver_t)
 corenet_sendrecv_afs_pt_server_packets(afs_ptserver_t)
 
-userdom_dontaudit_use_user_terminals(afs_ptserver_t)
-
 dev_read_urand(afs_ptserver_t)
 
+userdom_dontaudit_use_user_terminals(afs_ptserver_t)
+
 ########################################
 #
 # vlserver local policy
@@ -311,10 +311,10 @@ corenet_udp_bind_generic_node(afs_vlserver_t)
 corenet_udp_bind_afs_vl_port(afs_vlserver_t)
 corenet_sendrecv_afs_vl_server_packets(afs_vlserver_t)
 
-userdom_dontaudit_use_user_terminals(afs_vlserver_t)
-
 dev_read_urand(afs_vlserver_t)
 
+userdom_dontaudit_use_user_terminals(afs_vlserver_t)
+
 ########################################
 #
 # Global local policy