From: dsugar@tresys.com (Dave Sugar)
Date: Mon,  5 Mar 2018 09:02:57 -0500
Subject: [refpolicy] [PATCH 0/5-v4] Updates for chronyd
Message-ID: <20180305140302.31341-1-dsugar@tresys.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

This patch set is several changes to the chronyd module to achieve the following things:

1) Separate type for /etc/chrony.conf along with interfaces.
      v2 - fix a comment in the patch
2) Interfaces to start/stop/status/etc.. the chronyd service
      v2 - fix a comment in the patch
3) Allow chronyd to send/recv ntp client packets
4) New type for chronyc - it is run from chrony-wait.service but it was running in init_t domain
      v2 - incorporate feedback on interface names & fix denial related to chowning /var/run/chrony
5) Add interface to domtrans into chronyc domain
      v2 - incorporate feedback on interface names & allow cli access to tty

v4 - Try one last time to submit via email.  If this still fails I will try a pull request on GitHub.

 chronyd.fc |   2 +
 chronyd.if | 161 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 chronyd.te |  60 ++++++++++++++++++++++-
 3 files changed, 221 insertions(+), 2 deletions(-)

-- 
2.14.3