GitWeb
Get Gentoo!
gentoo.org sites
gentoo.org
Wiki
Bugs
Forums
Packages
Planet
Archives
Sources
Infra Status
Home
Gentoo Repository
Repositories
Projects
Developer Overlays
User Overlays
Data
Websites
index
:
proj/hardened-refpolicy.git
concord-dev
mailinfra
master
secmodel
various-20211111
Gentoo Hardened SELinux reference policy implementation
Sven Vermeulen <swift@gentoo.org>
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
Commit message (
Expand
)
Author
Age
Files
Lines
*
Update copyright in release-userspace script
HEAD
master
Kenton Groombridge
2022-06-03
1
-1
/
+2
*
Make release-userspace script prefer pkgdev
Kenton Groombridge
2022-06-03
1
-5
/
+22
*
Update release-userspace script
Jason Zaman
2022-05-26
1
-11
/
+11
*
Revert "new sddm V2"
2.20220106-r3
Jason Zaman
2022-04-09
7
-17
/
+0
*
Merge upstream
Jason Zaman
2022-04-09
1
-1
/
+1
*
container: add missing capabilities
Kenton Groombridge
2022-04-09
1
-2
/
+2
*
container: add tunables to allow containers to access public content
Kenton Groombridge
2022-04-09
1
-0
/
+30
*
container: allow generic containers to read the vm_overcommit sysctl
Kenton Groombridge
2022-04-09
1
-0
/
+2
*
container, init: allow init to remount container filesystems
Kenton Groombridge
2022-04-09
2
-0
/
+23
*
podman: add rules for systemd container units
Kenton Groombridge
2022-04-09
1
-0
/
+3
*
container, podman: allow containers to interact with conmon
Kenton Groombridge
2022-04-09
2
-0
/
+46
*
podman: fix role associations
Kenton Groombridge
2022-04-09
1
-2
/
+3
*
podman: allow system podman to interact with container transient units
Kenton Groombridge
2022-04-09
1
-0
/
+4
*
container, podman: allow podman to create and write config files
Kenton Groombridge
2022-04-09
2
-0
/
+42
*
Merge upstream
2.20220106-r2
Jason Zaman
2022-03-30
1
-1
/
+1
*
new sddm V2
Russell Coker
2022-03-30
7
-0
/
+17
*
apache: Remove unnecessary require in apache_exec().
Chris PeBenito
2022-03-30
1
-1
/
+1
*
postfix: Move lines.
Chris PeBenito
2022-03-30
1
-9
/
+9
*
init dbus patch for GetDynamicUsers with systemd_use_nss() V2
Russell Coker
2022-03-30
2
-8
/
+13
*
certbot V3
Russell Coker
2022-03-30
2
-3
/
+55
*
systemd.if: Allowed reading systemd_userdbd_runtime_t symlinks in systemd_str...
Jonathan Davies
2022-03-30
1
-0
/
+1
*
networkmanager: allow getting systemd system status
Kenton Groombridge
2022-03-30
1
-0
/
+1
*
udev: allow udev to start the systemd system object
Kenton Groombridge
2022-03-30
1
-0
/
+1
*
unconfined: fixes for bluetooth dbus chat and systemd
Kenton Groombridge
2022-03-30
1
-0
/
+5
*
getty, locallogin: cgroup fixes
Kenton Groombridge
2022-03-30
2
-0
/
+6
*
systemd: add support for systemd-resolved stubs
Kenton Groombridge
2022-03-30
1
-0
/
+4
*
systemd: various fixes
Kenton Groombridge
2022-03-30
1
-0
/
+12
*
authlogin: dontaudit getcap chkpwd
Kenton Groombridge
2022-03-30
1
-0
/
+1
*
locallogin: fix for polyinstantiation
Kenton Groombridge
2022-03-30
1
-0
/
+4
*
sudo: fixes for polyinstantiation
Kenton Groombridge
2022-03-30
1
-0
/
+6
*
files, init: allow init to remount filesystems mounted on /boot
Kenton Groombridge
2022-03-30
2
-0
/
+19
*
init: allow systemd to nnp_transition and nosuid_transition to daemon domains
Kenton Groombridge
2022-03-30
1
-0
/
+2
*
Rules.modular: add pure-load target
Christian Göttsche
2022-03-30
1
-1
/
+12
*
Makefile: use override for adding options
Christian Göttsche
2022-03-30
1
-5
/
+5
*
Rules.monolithic: add target to generate CIL policy
Christian Göttsche
2022-03-30
1
-0
/
+15
*
Makefile: invoke python with -bb
Christian Göttsche
2022-03-30
1
-1
/
+1
*
policy.dtd: more strict bool/tunable and infoflow validation
Christian Göttsche
2022-03-30
1
-4
/
+4
*
policy_capabilities: add ioctl_skip_cloexec
Christian Göttsche
2022-03-30
1
-1
/
+9
*
flask: add new kernel security classes
Christian Göttsche
2022-03-30
2
-2
/
+19
*
build.conf: bump policy version in comment
Christian Göttsche
2022-03-30
1
-1
/
+1
*
docker, podman: container units now have the runtime unit type
Kenton Groombridge
2022-03-30
2
-4
/
+4
*
dbus, policykit: add tunables for dbus-broker access
Kenton Groombridge
2022-03-30
2
-0
/
+120
*
dbus: fixes for dbus-broker
Kenton Groombridge
2022-03-30
1
-0
/
+7
*
init: split access for systemd runtime units
Kenton Groombridge
2022-03-30
3
-7
/
+87
*
podman: add explicit range transition for conmon
Kenton Groombridge
2022-03-30
1
-0
/
+16
*
systemd.te: Added boolean for allowing dhcpd server packets.
Jonathan Davies
2022-03-30
1
-0
/
+12
*
mailmain: Fix SELint issues.
Chris PeBenito
2022-03-30
1
-4
/
+2
*
mailmain: Fix check_fc_files issue.
Chris PeBenito
2022-03-30
1
-1
/
+1
*
mailman3 V3
Russell Coker
2022-03-30
5
-8
/
+173
*
Make hide_broken_symptoms unconditional.
Chris PeBenito
2022-03-30
25
-174
/
+92
[next]