Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* netutils: add file context for ss in /usr/binconcord-devKenton Groombridge2022-10-121-0/+1
* nginx: add file context for nginx in /usr/binKenton Groombridge2022-10-121-0/+1
* lvm: add file context for dmeventd in /usr/binKenton Groombridge2022-10-121-0/+1
* miscfiles: add file context for /usr/share/ca-certificates2.20221101-r12.20220520-r1Kenton Groombridge2022-09-031-0/+3
* phpfpm: various fixes and new tunablesKenton Groombridge2022-09-031-0/+73
* nginx: various fixesKenton Groombridge2022-09-031-0/+15
* apache: add gentoo-specific interface to map httpd sys contentKenton Groombridge2022-09-031-0/+20
* portage: allow portage to map ebuild filesKenton Groombridge2022-09-031-0/+2
* iptables: add file context for /usr/libexec/nftables/nftables.shKenton Groombridge2022-09-031-0/+2
* iptables: add file context for saved rulesKenton Groombridge2022-09-032-1/+5
* xserver: Revert the rest of the sddm changesJason Zaman2022-09-034-14/+0
* Update generated policy and doc filesJason Zaman2022-09-035-7266/+8226
* Merge upstreamJason Zaman2022-09-031-1/+1
* systemd: systemd-update-done fix startup issueDave Sugar2022-09-031-0/+1
* systemd: init_t creates systemd-logind 'linger' directoryDave Sugar2022-09-032-0/+22
* firewalld: firewalld-cmd uses dbusDave Sugar2022-09-031-0/+2
* firewalld: write tmpfs filesDave Sugar2022-09-031-0/+8
* firewalld: allow to load kernel modulesDave Sugar2022-09-031-0/+1
* firewalld: create netfilter socketDave Sugar2022-09-031-0/+1
* firewalld: read to read fips_enabled sysctlDave Sugar2022-09-031-0/+1
* usbguard: Allow to read fips_enabled sysctlDave Sugar2022-09-031-0/+1
* chronyd: allow chronyd to read /usr/share/crypto-policiesDave Sugar2022-09-031-0/+2
* chronyd: Allow to read fips_enabled sysctlDave Sugar2022-09-031-0/+1
* ssh: allow ssh_keygen to read /usr/share/crypto-policies/Dave Sugar2022-09-031-0/+1
* hypervkvp: Port updated module from Fedora policy.Chris PeBenito2022-09-038-7/+258
* Add cloud-init.Chris PeBenito2022-09-0311-2/+356
* systemd: Add interface for systemctl exec.Chris PeBenito2022-09-031-0/+31
* Drop explicit calls to seutil and kernel module interfaces in broad files int...Daniel Burgener2022-09-031-8/+0
* mls: Add setsockcreate constraint.Chris PeBenito2022-09-031-1/+1
* mcs: Reorganize file.Chris PeBenito2022-09-031-17/+36
* mcs: Remove duplicate node_bind constraint.Chris PeBenito2022-09-031-3/+0
* mcs: Add missing process permission constraints.Chris PeBenito2022-09-031-1/+1
* mcs: Add additional socket constraints.Chris PeBenito2022-09-031-0/+12
* mcs: Collapse constraints.Chris PeBenito2022-09-031-32/+4
* mcs: Add additional SysV IPC constraints.Chris PeBenito2022-09-031-1/+10
* filesystem: Move ecryptfs interface definitions.Chris PeBenito2022-09-031-78/+78
* container: Boolean for ecryptfsPat Riehecky2022-09-032-0/+92
* systemd: Misc updates.Chris PeBenito2022-09-032-4/+9
* application: Allow apps to use init fds.Chris PeBenito2022-09-031-0/+5
* container: Getattr generic device nodes.Chris PeBenito2022-09-031-0/+2
* container: Allow container engines to connect to http cache ports.Chris PeBenito2022-09-033-0/+23
* systemd: Fixes for coredumps in containers.Chris PeBenito2022-09-032-4/+32
* files: Make etc_runtime_t a config file.Chris PeBenito2022-09-031-1/+1
* files: Add prerequisite access for files_mounton_non_security().Chris PeBenito2022-09-031-2/+2
* storage: Add fc for /dev/ng*n* devices.Chris PeBenito2022-09-031-0/+1
* devices: Add type for infiniband devices.Chris PeBenito2022-09-032-0/+8
* iptables: Ioctl cgroup dirs.Chris PeBenito2022-09-032-0/+20
* devices: Add file context for /dev/vhost-vsock.Chris PeBenito2022-09-031-0/+1
* devices: Add type for SAS management devices.Chris PeBenito2022-09-032-0/+7
* container, docker: Fixes for containerd and kubernetes testing.Chris PeBenito2022-09-034-0/+29