[node-patches] Change in ovirt-node[master]: selinux: Add firewalld rule for el7

Thu Sep 18 04:45:54 UTC 2014

Fabian Deutsch has uploaded a new change for review.

Change subject: selinux: Add firewalld rule for el7
......................................................................

selinux: Add firewalld rule for el7

The tuned line was removed intentionally, it was a dupe.

Change-Id: I64fe590130f19d9795b39a3ae8d76e0696187b52
Signed-off-by: Fabian Deutsch <fabiand at fedoraproject.org>
---
M semodule/ovirt.te.in
1 file changed, 7 insertions(+), 2 deletions(-)


  git pull ssh://gerrit.ovirt.org:29418/ovirt-node refs/changes/26/33026/1

diff --git a/semodule/ovirt.te.in b/semodule/ovirt.te.in
index 07a7735..bf41847 100644
--- a/semodule/ovirt.te.in
+++ b/semodule/ovirt.te.in
@@ -447,8 +447,13 @@
 allow svirt_t initrc_t:unix_stream_socket connectto;
 
 
-#============= tuned_t ==============
-allow tuned_t ovirt_t:dbus send_msg;
+#============= firewalld_t ==============
+optional_policy(`
+    require {
+        type firewalld_t;
+    }
+    allow firewalld_t ovirt_t:dbus send_msg;
+')
 
 
 # Remove this block once the bug is solved


-- 
To view, visit http://gerrit.ovirt.org/33026
To unsubscribe, visit http://gerrit.ovirt.org/settings

Gerrit-MessageType: newchange
Gerrit-Change-Id: I64fe590130f19d9795b39a3ae8d76e0696187b52
Gerrit-PatchSet: 1
Gerrit-Project: ovirt-node
Gerrit-Branch: master
Gerrit-Owner: Fabian Deutsch <fabiand at redhat.com>

