Bug 2032408
Summary: | Rebase FAPOLICYD to the latest upstream version | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 9 | Reporter: | Zoltan Fridrich <zfridric> |
Component: | fapolicyd | Assignee: | Zoltan Fridrich <zfridric> |
Status: | CLOSED ERRATA | QA Contact: | Dalibor Pospíšil <dapospis> |
Severity: | high | Docs Contact: | Mirek Jahoda <mjahoda> |
Priority: | high | ||
Version: | 9.0 | CC: | dapospis, mjahoda, rsroka, zfridric |
Target Milestone: | rc | Keywords: | AutoVerified, Rebase, Triaged |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | fapolicyd-1.1-100.el9 | Doc Type: | Enhancement |
Doc Text: |
.RHEL 9 provides `fapolicyd` 1.1
RHEL 9 is distributed with the `fapolicyd` package version 1.1. Most notable enhancements include the following:
* The `/etc/fapolicyd/rules.d/` directory for files containing allow and deny execution rules replaces the `/etc/fapolicyd/fapolicyd.rules` file. The `fagenrules` script now merges all component rule files in this directory to the `/etc/fapolicyd/compiled.rules` file. See the new `fagenrules(8)` man page for more details.
* In addition to the `/etc/fapolicyd/fapolicyd.trust` file for marking files outside of the RPM database as trusted, you can now use the new `/etc/fapolicyd/trust.d` directory, which supports separating a list of trusted files into more files. You can also add an entry for a file by using the `fapolicyd-cli -f` subcommand with the `--trust-file` directive to these files. See the `fapolicyd-cli(1)` and `fapolicyd.trust(13)` man pages for more information.
* The `fapolicyd` trust database now supports white spaces in file names.
* `fapolicyd` now stores the correct path to an executable file when it adds the file to the trust database.
|
Story Points: | --- |
Clone Of: | 1939379 | Environment: | |
Last Closed: | 2022-05-17 13:32:08 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1939379 | ||
Bug Blocks: | |||
Deadline: | 2021-12-07 |
Comment 17
errata-xmlrpc
2022-05-17 13:32:08 UTC
|