From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 605FF13832E for ; Sat, 13 Aug 2016 18:32:39 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 36D5621C1BF; Sat, 13 Aug 2016 18:32:13 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 2BCB221C1ED for ; Sat, 13 Aug 2016 18:32:06 +0000 (UTC) Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 5AE2E340CEE for ; Sat, 13 Aug 2016 18:32:05 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id A38B32469 for ; Sat, 13 Aug 2016 18:32:01 +0000 (UTC) From: "Jason Zaman" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Jason Zaman" Message-ID: <1471112583.3c6c3b732e4d868791d86ddf777fa5d75889b168.perfinion@gentoo> Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/contrib/ X-VCS-Repository: proj/hardened-refpolicy X-VCS-Files: policy/modules/contrib/apm.te X-VCS-Directories: policy/modules/contrib/ X-VCS-Committer: perfinion X-VCS-Committer-Name: Jason Zaman X-VCS-Revision: 3c6c3b732e4d868791d86ddf777fa5d75889b168 X-VCS-Branch: master Date: Sat, 13 Aug 2016 18:32:01 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: 930208a1-34f5-4a73-9168-6917f0bbc05e X-Archives-Hash: 0eaccb7f7ff9e43adbfa70f84c170721 commit: 3c6c3b732e4d868791d86ddf777fa5d75889b168 Author: Guido Trentalancia trentalancia net> AuthorDate: Wed Aug 10 20:44:15 2016 +0000 Commit: Jason Zaman gentoo org> CommitDate: Sat Aug 13 18:23:03 2016 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=3c6c3b73 Update the policy for module apm Update needed for the normal functioning of the acpi daemon. Signed-off-by: Guido Trentalancia trentalancia.net> policy/modules/contrib/apm.te | 1 + 1 file changed, 1 insertion(+) diff --git a/policy/modules/contrib/apm.te b/policy/modules/contrib/apm.te index 3acc764..e2ac3c1 100644 --- a/policy/modules/contrib/apm.te +++ b/policy/modules/contrib/apm.te @@ -67,6 +67,7 @@ dontaudit apmd_t self:capability { setuid dac_override dac_read_search sys_ptrac allow apmd_t self:process { signal_perms getsession }; allow apmd_t self:fifo_file rw_fifo_file_perms; allow apmd_t self:netlink_socket create_socket_perms; +allow apmd_t self:netlink_generic_socket create_socket_perms; allow apmd_t self:unix_stream_socket { accept listen }; allow apmd_t apmd_lock_t:file manage_file_perms; From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id B155913832E for ; Sat, 13 Aug 2016 18:35:20 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 2C68621C206; Sat, 13 Aug 2016 18:35:09 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id B39F821C204 for ; Sat, 13 Aug 2016 18:35:07 +0000 (UTC) Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 0F1D4340CD8 for ; Sat, 13 Aug 2016 18:35:06 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id 93C462465 for ; Sat, 13 Aug 2016 18:35:01 +0000 (UTC) From: "Jason Zaman" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Jason Zaman" Message-ID: <1471112583.3c6c3b732e4d868791d86ddf777fa5d75889b168.perfinion@gentoo> Subject: [gentoo-commits] proj/hardened-refpolicy:next commit in: policy/modules/contrib/ X-VCS-Repository: proj/hardened-refpolicy X-VCS-Files: policy/modules/contrib/apm.te X-VCS-Directories: policy/modules/contrib/ X-VCS-Committer: perfinion X-VCS-Committer-Name: Jason Zaman X-VCS-Revision: 3c6c3b732e4d868791d86ddf777fa5d75889b168 X-VCS-Branch: next Date: Sat, 13 Aug 2016 18:35:01 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: 03f16bcf-873c-4fe4-98dd-5f3d7f97e36b X-Archives-Hash: 7067be9726a55edb8160793a7b7f2a93 Message-ID: <20160813183501.oMrLWy4BgjCGjJWLHLSqih6taFOOQ20uyw-iWgozc3M@z> commit: 3c6c3b732e4d868791d86ddf777fa5d75889b168 Author: Guido Trentalancia trentalancia net> AuthorDate: Wed Aug 10 20:44:15 2016 +0000 Commit: Jason Zaman gentoo org> CommitDate: Sat Aug 13 18:23:03 2016 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=3c6c3b73 Update the policy for module apm Update needed for the normal functioning of the acpi daemon. Signed-off-by: Guido Trentalancia trentalancia.net> policy/modules/contrib/apm.te | 1 + 1 file changed, 1 insertion(+) diff --git a/policy/modules/contrib/apm.te b/policy/modules/contrib/apm.te index 3acc764..e2ac3c1 100644 --- a/policy/modules/contrib/apm.te +++ b/policy/modules/contrib/apm.te @@ -67,6 +67,7 @@ dontaudit apmd_t self:capability { setuid dac_override dac_read_search sys_ptrac allow apmd_t self:process { signal_perms getsession }; allow apmd_t self:fifo_file rw_fifo_file_perms; allow apmd_t self:netlink_socket create_socket_perms; +allow apmd_t self:netlink_generic_socket create_socket_perms; allow apmd_t self:unix_stream_socket { accept listen }; allow apmd_t apmd_lock_t:file manage_file_perms;