Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package selinux-policy for openSUSE:Factory
checked in at 2024-12-15 12:34:21
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/selinux-policy (Old)
and /work/SRC/openSUSE:Factory/.selinux-policy.new.29675 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "selinux-policy"
Sun Dec 15 12:34:21 2024 rev:90 rq:1230760 version:20241213
Changes:
--------
--- /work/SRC/openSUSE:Factory/selinux-policy/selinux-policy.changes
2024-12-08 11:38:00.275800537 +0100
+++ /work/SRC/openSUSE:Factory/.selinux-policy.new.29675/selinux-policy.changes
2024-12-15 12:34:32.871611677 +0100
@@ -1,0 +2,11 @@
+Fri Dec 13 10:10:49 UTC 2024 - cathy...@suse.com
+
+- Update to version 20241213:
+ * Add policy for importctl (bsc#1232670)
+
+-------------------------------------------------------------------
+Wed Dec 11 11:33:51 UTC 2024 - Cathy Hu <cathy...@suse.com>
+
+- Fix minimum policy by readding rpm module (bsc#1234314)
+
+-------------------------------------------------------------------
Old:
----
selinux-policy-20241206.tar.xz
New:
----
selinux-policy-20241213.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ selinux-policy.spec ++++++
--- /var/tmp/diff_new_pack.PupoS9/_old 2024-12-15 12:34:33.587641493 +0100
+++ /var/tmp/diff_new_pack.PupoS9/_new 2024-12-15 12:34:33.591641660 +0100
@@ -36,7 +36,7 @@
License: GPL-2.0-or-later
Group: System/Management
Name: selinux-policy
-Version: 20241206
+Version: 20241213
Release: 0
Source0: %{name}-%{version}.tar.xz
Source1: container.fc
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.PupoS9/_old 2024-12-15 12:34:33.679645325 +0100
+++ /var/tmp/diff_new_pack.PupoS9/_new 2024-12-15 12:34:33.683645491 +0100
@@ -1,7 +1,7 @@
<servicedata>
<service name="tar_scm">
<param
name="url">https://gitlab.suse.de/selinux/selinux-policy.git</param>
- <param
name="changesrevision">5408c3e4f5bda7e79e2e1957796ad43781345202</param></service><service
name="tar_scm">
+ <param
name="changesrevision">c1b4db3aff6852942544e0dd2e91989fdd76b8f3</param></service><service
name="tar_scm">
<param
name="url">https://github.com/containers/container-selinux.git</param>
<param
name="changesrevision">07b3034f6d9625ab84508a2f46515d8ff79b4204</param></service><service
name="tar_scm">
<param
name="url">https://gitlab.suse.de/jsegitz/selinux-policy.git</param>
++++++ modules-minimum.lst ++++++
--- /var/tmp/diff_new_pack.PupoS9/_old 2024-12-15 12:34:33.791649988 +0100
+++ /var/tmp/diff_new_pack.PupoS9/_new 2024-12-15 12:34:33.799650322 +0100
@@ -28,6 +28,7 @@
netutils
nis
postgresql
+rpm
secadm
selinuxutil
setrans
++++++ selinux-policy-20241206.tar.xz -> selinux-policy-20241213.tar.xz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/selinux-policy-20241206/policy/modules/system/systemd.fc
new/selinux-policy-20241213/policy/modules/system/systemd.fc
--- old/selinux-policy-20241206/policy/modules/system/systemd.fc
2024-12-06 17:00:58.000000000 +0100
+++ new/selinux-policy-20241213/policy/modules/system/systemd.fc
2024-12-13 11:09:48.000000000 +0100
@@ -104,6 +104,9 @@
/var/cache/systemd(//.*)?
gen_context(system_u:object_r:systemd_cache_t,s0)
+/var/lib/confexts(/.*)?
gen_context(system_u:object_r:systemd_importd_var_lib_t,s0)
+/var/lib/extensions(/.*)?
gen_context(system_u:object_r:systemd_importd_var_lib_t,s0)
+/var/lib/portables(/.*)?
gen_context(system_u:object_r:systemd_importd_var_lib_t,s0)
/var/lib/machines(/.*)?
gen_context(system_u:object_r:systemd_machined_var_lib_t,s0)
/var/lib/systemd/coredump(/.*)?
gen_context(system_u:object_r:systemd_coredump_var_lib_t,s0)
/var/lib/systemd/network(/.*)?
gen_context(system_u:object_r:systemd_networkd_var_lib_t,s0)
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/selinux-policy-20241206/policy/modules/system/systemd.te
new/selinux-policy-20241213/policy/modules/system/systemd.te
--- old/selinux-policy-20241206/policy/modules/system/systemd.te
2024-12-06 17:00:58.000000000 +0100
+++ new/selinux-policy-20241213/policy/modules/system/systemd.te
2024-12-13 11:09:48.000000000 +0100
@@ -257,6 +257,9 @@
systemd_domain_template(systemd_importd)
init_nnp_daemon_domain(systemd_importd_t)
+type systemd_importd_var_lib_t;
+files_type(systemd_importd_var_lib_t)
+
type systemd_importd_var_run_t;
files_pid_file(systemd_importd_var_run_t)
@@ -1742,6 +1745,12 @@
allow systemd_importd_t self:unix_dgram_socket sendto;
allow systemd_importd_t systemd_importd_exec_t:file execute_no_trans;
+manage_dirs_pattern(systemd_importd_t, systemd_importd_var_lib_t,
systemd_importd_var_lib_t)
+manage_files_pattern(systemd_importd_t, systemd_importd_var_lib_t,
systemd_importd_var_lib_t)
+files_var_lib_filetrans(systemd_importd_t, systemd_importd_var_lib_t, dir,
"confexts")
+files_var_lib_filetrans(systemd_importd_t, systemd_importd_var_lib_t, dir,
"extensions")
+files_var_lib_filetrans(systemd_importd_t, systemd_importd_var_lib_t, dir,
"portables")
+
manage_dirs_pattern(systemd_importd_t, systemd_importd_var_run_t,
systemd_importd_var_run_t)
manage_files_pattern(systemd_importd_t, systemd_importd_var_run_t,
systemd_importd_var_run_t)
manage_sock_files_pattern(systemd_importd_t, systemd_importd_var_run_t,
systemd_importd_var_run_t)
