1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.DIST

  • Bug#1109173: unblock: refpolicy/2:2.20250213-8

    From Russell Coker@21:1/5 to All on Sun Jul 13 09:00:01 2025
    XPost: linux.debian.devel.release

    Package: release.debian.org
    Severity: normal
    User: [email protected]
    Usertags: unblock

    Please unblock package refpolicy

    (Please provide enough (but not too much) information to help
    the release team to judge the request efficiently. E.g. by
    filling in the sections below.)

    [ Reason ]
    The main reason is to add new access required by updates to packages in
    Trixie.

    The secondary reason is to fix some syntax issues and make the Debian policy more compatible with upstream.

    [ Impact ]
    Not having this will break things for people using dovecot, some configurations of mon, fwupd, and potentially cause some critical breakage in systemd-logind.

    Also this will avoid some potential problems for users who write their own custom policy.

    [ Tests ]
    I have tested this extensively.

    [ Risks ]
    This just adds extra access so there is minimal risk.

    [ Checklist ]
    [x] all changes are documented in the d/changelog
    [x] I reviewed all changes and I approve them
    [x] attach debdiff against the package in testing


    unblock refpolicy/2:2.20250213-8


    diff -Nru refpolicy-2.20250213/debian/changelog refpolicy-2.20250213/debian/changelog
    --- refpolicy-2.20250213/debian/changelog 2025-06-03 20:58:37.000000000 +1000
    +++ refpolicy-2.20250213/debian/changelog 2025-07-06 19:29:50.000000000 +1000
    @@ -1,3 +1,19 @@
    +refpolicy (2:2.20250213-8) unstable; urgency=medium
    +
    + * Fix syntax errors
    + * Allow dovecot_auth_t to mape dovecot_runtime_t files
    + * Allow mon_net_test_t to run netutils
    + * removed unused interfaces fs_mounton_memory_pressure and
    + userdom_watch_user_ttys
    + * Remove systemd_logind_use_fds and use systemd_use_logind_fds instead
    + * Allow dhcpc_t to list resolved runtime dir and stat generic units files
    + * Allow systemd-logind and systemd-user-runtime-dir stat /proc as logind
    + failing to do so can cause difficult to diagnose dbus issues with
    + pam_login
    + * Allow fwupd to signal itself
    +
    + -- Russell Coker <[email protected]> Sun, 06 Jul 2025 19:29:50 +1000
    +
    refpolicy (2:2.20250213-7) unstable; urgency=medium

    * Allow user systemd domains to list user tmp, watch root, read usr files, di