Commits on Jan 12, 2017

  1. (GH-147) Add ordering of resources 

    This change adds ordering of resources of this module.

It enables to declare resources in different manifests without
the need to care about ordering.
    @vinzent
    vinzent committed Jan 12, 2017
    Configuration menu
    Copy the full SHA
    8116a4f View commit details
    Browse the repository at this point in the history

  2. (GH-147) Add spec tests for the ordering of resources

    @vinzent
    vinzent committed Jan 12, 2017
    Configuration menu
    Copy the full SHA
    b306f49 View commit details
    Browse the repository at this point in the history

  3. (GH-147) Test default resource ordering in acceptance test 

    Remove ordering of all `selinux::*` resources. This was not
possible before the addition of the ordering.
    @vinzent
    vinzent committed Jan 12, 2017
    Configuration menu
    Copy the full SHA
    4f99a3d View commit details
    Browse the repository at this point in the history

  4. Merge pull request #167 from vinzent/147_ordering_of_resources 

    (GH-147) Add ordering of resources
    @rnelson0
    rnelson0 authored Jan 12, 2017
    Configuration menu
    Copy the full SHA
    2b8a353 View commit details
    Browse the repository at this point in the history

  5. bump required puppet version to 4.6.1

    @bastelfreak
    bastelfreak committed Jan 12, 2017
    Configuration menu
    Copy the full SHA
    a304af6 View commit details
    Browse the repository at this point in the history

  6. modulesync 0.18.0

    @bastelfreak
    bastelfreak committed Jan 12, 2017
    Configuration menu
    Copy the full SHA
    3442761 View commit details
    Browse the repository at this point in the history

  7. [blacksmith] Bump version to 0.8.1-rc0

    @bastelfreak
    bastelfreak committed Jan 12, 2017
    Configuration menu
    Copy the full SHA
    c34f99c View commit details
    Browse the repository at this point in the history

  8. Merge pull request #170 from voxpupuli/modulesync 

    Modulesync 0.18.0
    @rnelson0
    rnelson0 authored Jan 12, 2017
    Configuration menu
    Copy the full SHA
    862ed2e View commit details
    Browse the repository at this point in the history

Commits on Jan 13, 2017

  1. Document known problems / limitations 

    Update the README.md to include hints about known problems and
limitations to consider when working with SELinux and this module.

Related: GH-121, GH-164, GH-165
    @vinzent
    vinzent committed Jan 13, 2017
    Configuration menu
    Copy the full SHA
    7fd977a View commit details
    Browse the repository at this point in the history

  2. Merge pull request #171 from vinzent/doc_update 

    Document known problems / limitations
    @bastelfreak
    bastelfreak authored Jan 13, 2017
    Configuration menu
    Copy the full SHA
    02d2738 View commit details
    Browse the repository at this point in the history

  3. Generate puppet strings in docs/ folder 

    already in modulesync pipeline:
voxpupuli/modulesync_config#304
    @vinzent
    vinzent committed Jan 13, 2017
    Configuration menu
    Copy the full SHA
    65ecdde View commit details
    Browse the repository at this point in the history

  4. Add redcarpet gem needed for puppet strings 

    Already in modulesync pipeline:
voxpupuli/modulesync_config#304
    @vinzent
    vinzent committed Jan 13, 2017
    Configuration menu
    Copy the full SHA
    c0f1168 View commit details
    Browse the repository at this point in the history

  5. Convert inline docs to puppet-strings format

    @vinzent
    vinzent committed Jan 13, 2017
    Configuration menu
    Copy the full SHA
    d12a836 View commit details
    Browse the repository at this point in the history

  6. Provide resource ordering UML diagram 

    Written with PlantUML syntax
    @vinzent
    vinzent committed Jan 13, 2017
    Configuration menu
    Copy the full SHA
    0f83a6f View commit details
    Browse the repository at this point in the history

  7. Generated puppet strings docs

    @vinzent
    vinzent committed Jan 13, 2017
    Configuration menu
    Copy the full SHA
    699e6b2 View commit details
    Browse the repository at this point in the history

  8. Merge pull request #172 from vinzent/doc_update 

    Update inline doc to puppet-strings
    @bastelfreak
    bastelfreak authored Jan 13, 2017
    Configuration menu
    Copy the full SHA
    2fae8d0 View commit details
    Browse the repository at this point in the history

  9. Fix broken link to puppet strings documentation

    @vinzent
    vinzent committed Jan 13, 2017
    Configuration menu
    Copy the full SHA
    0bf10cc View commit details
    Browse the repository at this point in the history

  10. Merge pull request #173 from vinzent/doc_update 

    Fix broken link to puppet strings documentation
    @bastelfreak
    bastelfreak authored Jan 13, 2017
    Configuration menu
    Copy the full SHA
    d4d9fdc View commit details
    Browse the repository at this point in the history

Commits on Jan 15, 2017

  1. Downgrade to permissive configuration when SELinux is disabled 

    This avoids configurations that could break when SELinux is enabled
again. The user will be issued a warning if they are not already
enforcing permissive mode
    @oranenj
    oranenj committed Jan 15, 2017
    Configuration menu
    Copy the full SHA
    72006c7 View commit details
    Browse the repository at this point in the history

  2. modulesync 0.19.0

    @bastelfreak
    bastelfreak committed Jan 15, 2017
    Configuration menu
    Copy the full SHA
    0467ea8 View commit details
    Browse the repository at this point in the history

  3. Merge pull request #176 from voxpupuli/modulesync 

    modulesync 0.19.0
    @bastelfreak
    bastelfreak authored Jan 15, 2017
    Configuration menu
    Copy the full SHA
    efa2392 View commit details
    Browse the repository at this point in the history

  4. Document downgrade behaviour in README

    @oranenj
    oranenj committed Jan 15, 2017
    Configuration menu
    Copy the full SHA
    dc74982 View commit details
    Browse the repository at this point in the history

Commits on Jan 17, 2017

  1. Adapt required rubocop config change 

    Workaround for warning/errors:

/voxpupuli/puppet-selinux/.rubocop.yml: Lint/Eval has the wrong namespace - should be Security
Error: The `Style/MethodCallParentheses` cop has been renamed to `Style/MethodCallWithoutArgsParentheses`.
    @vinzent
    vinzent committed Jan 17, 2017
    Configuration menu
    Copy the full SHA
    211de87 View commit details
    Browse the repository at this point in the history

  2. Fix for Security/YAMLLoad rubocop warning

    @vinzent
    vinzent committed Jan 17, 2017
    Configuration menu
    Copy the full SHA
    5744329 View commit details
    Browse the repository at this point in the history

  3. Merge pull request #182 from vinzent/rubocop_config_fixes 

    Rubocop config fixes
    @bastelfreak
    bastelfreak authored Jan 17, 2017
    Configuration menu
    Copy the full SHA
    691cc28 View commit details
    Browse the repository at this point in the history

  4. (GH-119) Don't accept udp6 and tcp6 as protocol name with selinux::port 

    Only udp and tcp are valid. ipv4 and ipv6 would be valid options too
but it wasn't provided before.

This change closes #119
    @vinzent
    vinzent committed Jan 17, 2017
    Configuration menu
    Copy the full SHA
    a25d44d View commit details
    Browse the repository at this point in the history

  5. (GH-148) Make use of class selinux parameters 

    Until now only hiera was queried for module, boolean, fcontext
permissive and port parameters. In puppet manifest declared
parameters we're not considered at all.
    @vinzent
    vinzent committed Jan 17, 2017
    Configuration menu
    Copy the full SHA
    b9041d2 View commit details
    Browse the repository at this point in the history

  6. Use correct type in create_resource with permissive parameter 

    Permissive parameter tried to manage selinux::fcontext resources.
    @vinzent
    vinzent committed Jan 17, 2017
    Configuration menu
    Copy the full SHA
    de69bf8 View commit details
    Browse the repository at this point in the history

  7. (GH-148) Add spec tests for class parameters 

    Closes #148
    @vinzent
    vinzent committed Jan 17, 2017
    Configuration menu
    Copy the full SHA
    510c303 View commit details
    Browse the repository at this point in the history

  8. Merge pull request #181 from vinzent/119_validate_port_params 

    (GH-119) Don't accept udp6 and tcp6 as protocol name with selinux::port
    @bastelfreak
    bastelfreak authored Jan 17, 2017
    Configuration menu
    Copy the full SHA
    75dfc59 View commit details
    Browse the repository at this point in the history

  9. Merge pull request #180 from vinzent/148_use_unused_class_params 

    (GH-148) Use declared parameters
    @bastelfreak
    bastelfreak authored Jan 17, 2017
    Configuration menu
    Copy the full SHA
    abf35d8 View commit details
    Browse the repository at this point in the history

Commits on Jan 18, 2017

  1. modulesync 0.19.3

    David Hollinger III committed Jan 18, 2017
    Configuration menu
    Copy the full SHA
    2a6a2b4 View commit details
    Browse the repository at this point in the history

  2. Merge pull request #187 from voxpupuli/modulesync 

    modulesync 0.19.3
    @bastelfreak
    bastelfreak authored Jan 18, 2017
    Configuration menu
    Copy the full SHA
    e0dcb18 View commit details
    Browse the repository at this point in the history

Commits on Jan 21, 2017

  1. Add selinux_permissive type and provider

    @oranenj
    oranenj committed Jan 21, 2017
    Configuration menu
    Copy the full SHA
    272de9b View commit details
    Browse the repository at this point in the history

Commits on Jan 22, 2017

  1. Add providers for selinux_fcontext and selinux_fcontext_equivalence

    @oranenj
    oranenj committed Jan 22, 2017
    Configuration menu
    Copy the full SHA
    585941f View commit details
    Browse the repository at this point in the history

  2. Make selinux::fcontext use the provider

    @oranenj
    oranenj committed Jan 22, 2017
    Configuration menu
    Copy the full SHA
    9bc4fbf View commit details
    Browse the repository at this point in the history

  3. Use File resource terminology

    @oranenj
    oranenj committed Jan 22, 2017
    Configuration menu
    Copy the full SHA
    7950460 View commit details
    Browse the repository at this point in the history

  4. Restore support for older semanage versions

    @oranenj
    oranenj committed Jan 22, 2017
    Configuration menu
    Copy the full SHA
    7629cd5 View commit details
    Browse the repository at this point in the history

  5. Some specs for the providers

    @oranenj
    oranenj committed Jan 22, 2017
    Configuration menu
    Copy the full SHA
    f841a6d View commit details
    Browse the repository at this point in the history

  6. Add selinux::fcontext::equivalence

    @oranenj
    oranenj committed Jan 22, 2017
    Configuration menu
    Copy the full SHA
    f34eb2c View commit details
    Browse the repository at this point in the history

  7. Simplify selinux::fcontext interface (WIP)

    @oranenj
    oranenj committed Jan 22, 2017
    Configuration menu
    Copy the full SHA
    a82eb90 View commit details
    Browse the repository at this point in the history

  8. Add acceptance tests for selinux::fcontext

    @oranenj
    oranenj committed Jan 22, 2017
    Configuration menu
    Copy the full SHA
    0b4a314 View commit details
    Browse the repository at this point in the history

Commits on Jan 31, 2017

  1. Use the selinux_permissive type in the manifest

    @oranenj
    oranenj committed Jan 31, 2017
    Configuration menu
    Copy the full SHA
    22541f1 View commit details
    Browse the repository at this point in the history

  2. Add some spec tests for the semanage provider.

    @oranenj
    oranenj committed Jan 31, 2017
    Configuration menu
    Copy the full SHA
    1229e4c View commit details
    Browse the repository at this point in the history

  3. Acceptance tests

    @oranenj
    oranenj committed Jan 31, 2017
    Configuration menu
    Copy the full SHA
    8094b16 View commit details
    Browse the repository at this point in the history

  4. Use libselinux for providers and directly parse text files

    @oranenj
    oranenj committed Jan 31, 2017
    Configuration menu
    Copy the full SHA
    89172d1 View commit details
    Browse the repository at this point in the history

  5. Merge pull request #175 from oranenj/downgrade_enforcing_when_disabled 

    Downgrade enforcing to permissive configuration when SELinux is disabled
    @vinzent
    vinzent authored Jan 31, 2017
    Configuration menu
    Copy the full SHA
    1c5344e View commit details
    Browse the repository at this point in the history

  6. Merge pull request #177 from oranenj/selinux_fcontext_type 

    Add selinux_fcontext and selinux_fcontext_equivalence types
    @vinzent
    vinzent authored Jan 31, 2017
    Configuration menu
    Copy the full SHA
    adb8cd4 View commit details
    Browse the repository at this point in the history

  7. Merge pull request #183 from oranenj/selinux_permissive_type 

    Selinux permissive type
    @vinzent
    vinzent authored Jan 31, 2017
    Configuration menu
    Copy the full SHA
    0554cd3 View commit details
    Browse the repository at this point in the history

  8. Implement a selinux_port type and provider via semanage 

    This initial implementation seems to work as expected. The provider
will fail if trying to remove entries defined in the system policy.

The prefetch method feels like a hack, but I am not sure what the best
way to map unique port/protocol pairs to catalog resources is. It must
be done in order to use modify instead of add when there is an existing
context definition.
    @oranenj
    oranenj committed Jan 31, 2017
    Configuration menu
    Copy the full SHA
    5d33efd View commit details
    Browse the repository at this point in the history