diff options
| author |   Anthony G. Basile <blueness@gentoo.org> | 2011-04-16 13:35:40 +0000 |
|---|---|---|
| committer | Anthony G. Basile <blueness@gentoo.org> | 2011-04-16 13:35:40 +0000 |
| commit | 3a8911b6a8c03da7a635f177224195e206fe299f (patch) | |
| tree | 18d4110280d34c16ff89cbd924443b2a28270ebe /sec-policy/selinux-mysql | |
| parent | Phase-out of openldap (use selinux-ldap) (diff) | |
| download | gentoo-2-3a8911b6a8c03da7a635f177224195e206fe299f.tar.gz gentoo-2-3a8911b6a8c03da7a635f177224195e206fe299f.tar.bz2 gentoo-2-3a8911b6a8c03da7a635f177224195e206fe299f.zip | |
Hide cosmetic denials
(Portage version: 2.1.9.42/cvs/Linux x86_64)
Diffstat (limited to 'sec-policy/selinux-mysql')
| -rw-r--r-- | sec-policy/selinux-mysql/ChangeLog | 8 | ||||
| -rw-r--r-- | sec-policy/selinux-mysql/files/fix-services-mysql-r1.patch | 13 | ||||
| -rw-r--r-- | sec-policy/selinux-mysql/selinux-mysql-2.20101213-r1.ebuild | 13 |
3 files changed, 33 insertions, 1 deletions
diff --git a/sec-policy/selinux-mysql/ChangeLog b/sec-policy/selinux-mysql/ChangeLog index a315e77a67b0..3ad166fb5d6d 100644 --- a/sec-policy/selinux-mysql/ChangeLog +++ b/sec-policy/selinux-mysql/ChangeLog @@ -1,6 +1,12 @@ # ChangeLog for sec-policy/selinux-mysql # Copyright 1999-2011 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-mysql/ChangeLog,v 1.32 2011/02/05 12:07:11 blueness Exp $ +# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-mysql/ChangeLog,v 1.33 2011/04/16 13:35:40 blueness Exp $ + +*selinux-mysql-2.20101213-r1 (16 Apr 2011) + + 16 Apr 2011; Anthony G. Basile <blueness@gentoo.org> + +files/fix-services-mysql-r1.patch, +selinux-mysql-2.20101213-r1.ebuild: + Hide cosmetic denials *selinux-mysql-2.20101213 (05 Feb 2011) diff --git a/sec-policy/selinux-mysql/files/fix-services-mysql-r1.patch b/sec-policy/selinux-mysql/files/fix-services-mysql-r1.patch new file mode 100644 index 000000000000..05e6e7f58e01 --- /dev/null +++ b/sec-policy/selinux-mysql/files/fix-services-mysql-r1.patch @@ -0,0 +1,13 @@ +--- services/mysql.te 2010-08-03 15:11:06.000000000 +0200 ++++ services/mysql.te 2011-04-13 17:57:57.369000043 +0200 +@@ -136,6 +136,10 @@ + corenet_sendrecv_all_client_packets(mysqld_t) + ') + ++tunable_policy(`gentoo_try_dontaudit',` ++ dontaudit mysqld_t self:capability dac_read_search; ++') ++ + optional_policy(` + daemontools_service_domain(mysqld_t, mysqld_exec_t) + ') diff --git a/sec-policy/selinux-mysql/selinux-mysql-2.20101213-r1.ebuild b/sec-policy/selinux-mysql/selinux-mysql-2.20101213-r1.ebuild new file mode 100644 index 000000000000..b6f42bd35e0d --- /dev/null +++ b/sec-policy/selinux-mysql/selinux-mysql-2.20101213-r1.ebuild @@ -0,0 +1,13 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sec-policy/selinux-mysql/selinux-mysql-2.20101213-r1.ebuild,v 1.1 2011/04/16 13:35:40 blueness Exp $ + +MODS="mysql" +IUSE="" + +inherit selinux-policy-2 + +DESCRIPTION="SELinux policy for mysql" + +KEYWORDS="~amd64 ~x86" +POLICY_PATCH="${FILESDIR}/fix-services-mysql-r1.patch" |