* [refpolicy] Update setrans patch
@ 2008-08-25 16:08 Daniel J Walsh
2008-09-11 14:53 ` Christopher J. PeBenito
0 siblings, 1 reply; 2+ messages in thread
From: Daniel J Walsh @ 2008-08-25 16:08 UTC (permalink / raw)
To: refpolicy
http://people.fedoraproject.org/~dwalsh/SELinux/Policy/system_setrans.patch
Needs getcap
Needs to be able to talk to fds at different levels. For some reason
none of these changes have been made upstream. Am I mistaken in
thinking these are required. I also have this interface used for
cupsd_y, system_dbusd_t, inetd_t.
^ permalink raw reply [flat|nested] 2+ messages in thread
* [refpolicy] Update setrans patch
2008-08-25 16:08 [refpolicy] Update setrans patch Daniel J Walsh
@ 2008-09-11 14:53 ` Christopher J. PeBenito
0 siblings, 0 replies; 2+ messages in thread
From: Christopher J. PeBenito @ 2008-09-11 14:53 UTC (permalink / raw)
To: refpolicy
On Mon, 2008-08-25 at 12:08 -0400, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/Policy/system_setrans.patch
>
> Needs getcap
>
> Needs to be able to talk to fds at different levels. For some reason
> none of these changes have been made upstream. Am I mistaken in
> thinking these are required. I also have this interface used for
> cupsd_y, system_dbusd_t, inetd_t.
The getcap is fine, but the fd part reverses an upstream change which
allows initrc_t fds to be shared to any level:
http://oss.tresys.com/projects/refpolicy/changeset/2396
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2008-09-11 14:53 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2008-08-25 16:08 [refpolicy] Update setrans patch Daniel J Walsh
2008-09-11 14:53 ` Christopher J. PeBenito
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.