From: pebenito@ieee.org (Chris PeBenito)
Date: Wed, 7 Mar 2018 16:57:38 -0500
Subject: [refpolicy] [PATCH 0/5-v4] Updates for chronyd
In-Reply-To: <20180305140302.31341-1-dsugar@tresys.com>
References: <20180305140302.31341-1-dsugar@tresys.com>
Message-ID: <b7e0e03b-a6b2-c404-b8bd-5bb7db947bd8@ieee.org>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On 03/05/2018 09:02 AM, Dave Sugar via refpolicy wrote:
> This patch set is several changes to the chronyd module to achieve the following things:
> 
> 1) Separate type for /etc/chrony.conf along with interfaces.
>        v2 - fix a comment in the patch
> 2) Interfaces to start/stop/status/etc.. the chronyd service
>        v2 - fix a comment in the patch
> 3) Allow chronyd to send/recv ntp client packets
> 4) New type for chronyc - it is run from chrony-wait.service but it was running in init_t domain
>        v2 - incorporate feedback on interface names & fix denial related to chowning /var/run/chrony
> 5) Add interface to domtrans into chronyc domain
>        v2 - incorporate feedback on interface names & allow cli access to tty
> 
> v4 - Try one last time to submit via email.  If this still fails I will try a pull request on GitHub.
> 
>   chronyd.fc |   2 +
>   chronyd.if | 161 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>   chronyd.te |  60 ++++++++++++++++++++++-
>   3 files changed, 221 insertions(+), 2 deletions(-)

Merged.

-- 
Chris PeBenito