Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
path: root/policy/modules
Commit message (Expand)AuthorAgeFilesLines
* cron: Use raw entrypoint rule for system_cronjob_t.Chris PeBenito2024-05-141-1/+1
* uml: Remove excessive access from user domains on uml_exec_t.Chris PeBenito2024-05-141-2/+2
* Set the type on /etc/machine-info to net_conf_t so hostnamectl can manipulate...Rick Alther2024-05-141-0/+1
* systemd: allow notify client to stat socketChristian Göttsche2024-05-141-1/+1
* quote: read localizationChristian Göttsche2024-05-141-0/+2
* getty: grant checkpoint_restoreChristian Göttsche2024-05-141-0/+1
* Update SOS report to work on RHEL9Dave Sugar2024-05-142-5/+43
* Setup domain for dbus selinux interfaceDave Sugar2024-05-143-0/+47
* libraries: drop space in empty lineChristian Göttsche2024-03-011-1/+1
* consolesetup: updateChristian Göttsche2024-03-011-0/+2
* systemd: logind updateChristian Göttsche2024-03-011-0/+3
* udev: updateChristian Göttsche2024-03-012-0/+33
* systemd: generator updatesChristian Göttsche2024-03-012-1/+22
* fs: add support for virtiofsChristian Göttsche2024-03-011-0/+11
* vnstatd: updateChristian Göttsche2024-03-011-0/+1
* systemd: binfmt updatesChristian Göttsche2024-03-012-0/+43
* fs: mark memory pressure type as fileChristian Göttsche2024-03-011-0/+1
* userdom: permit reading PSI as adminChristian Göttsche2024-03-011-0/+1
* selinuxutil: ignore getattr proc in newroleChristian Göttsche2024-03-011-0/+1
* selinuxutil: setfiles updatesChristian Göttsche2024-03-012-0/+21
* virt: label qemu configuration directoryChristian Göttsche2024-03-011-0/+2
* cloudinit: Add permissions derived from sysadm.Chris PeBenito2024-03-0114-26/+1215
* systemd: Updates for systemd-locale.Chris PeBenito2024-03-011-0/+5
* cloud-init: Change udev rulesChris PeBenito2024-03-011-0/+1
* cloud-init: Add systemd permissions.Chris PeBenito2024-03-012-4/+27
* cloud-init: Allow use of sudo in runcmd.Chris PeBenito2024-03-012-0/+33
* chronyd: Read /dev/urandom.Chris PeBenito2024-03-011-0/+1
* unconfined: Add remaining watch_* permissions.Chris PeBenito2024-03-014-29/+29
* usermanage: Handle symlinks in /usr/share/cracklib.Chris PeBenito2024-03-012-0/+2
* kdump: Fixes from testing kdumpctl.Chris PeBenito2024-03-011-0/+15
* cloudinit: Add support for installing RPMs and setting passwords.Chris PeBenito2024-03-013-0/+35
* files: Handle symlinks for /media and /srv.Chris PeBenito2024-03-011-1/+2
* usermanage: Add sysctl access for groupadd to get number of groups.Chris PeBenito2024-03-011-0/+4
* sysnetwork: ifconfig searches debugfs.Chris PeBenito2024-03-011-0/+1
* selinuxutil: Semanage reads policy for export.Chris PeBenito2024-03-011-0/+1
* init: Allow nnp/nosuid transitions from systemd initrc_t.Chris PeBenito2024-03-011-0/+2
* rpm: Minor fixesChris PeBenito2024-03-011-1/+3
* systemd: Minor coredump fixes.Chris PeBenito2024-03-012-7/+24
* Container: Minor fixes from interactive container use.Chris PeBenito2024-03-013-1/+29
* kernel: hv_utils shutdown on systemd systems.Chris PeBenito2024-03-011-0/+5
* systemd: systemd-cgroups reads kernel.cap_last_cap sysctl.Chris PeBenito2024-03-011-0/+3
* domain: Manage own fds.Chris PeBenito2024-03-011-3/+4
* kubernetes: allow kubelet to apply fsGroup to persistent volumesKenton Groombridge2024-03-012-0/+23
* container: allow spc to map kubernetes runtime filesKenton Groombridge2024-03-012-0/+19
* crio: allow reading container home contentKenton Groombridge2024-03-012-2/+22
* systemd: allow systemd generator to list exportsKenton Groombridge2024-03-011-0/+1
* dbus: allow the system bus to get the status of generic unitsKenton Groombridge2024-03-011-0/+3
* rpc: fix not labeling exports.d directoryKenton Groombridge2024-03-011-1/+1
* bootloader, init, udev: misc minor fixesKenton Groombridge2024-03-013-2/+4
* systemd: label systemd-tpm2-setup as systemd-pcrphaseKenton Groombridge2024-03-011-0/+1