Skip to content

Commit

Permalink
docs(changelog): version 1.7.2 [citest skip]
Browse files Browse the repository at this point in the history
Update changelog and .README.html for version 1.7.2

Signed-off-by: Rich Megginson <[email protected]>
  • Loading branch information
richm committed Dec 8, 2023
1 parent bf0d6ba commit f53efd7
Show file tree
Hide file tree
Showing 2 changed files with 45 additions and 10 deletions.
41 changes: 31 additions & 10 deletions .README.html
Original file line number Diff line number Diff line change
Expand Up @@ -245,8 +245,11 @@ <h2 id="selinux_booleans">selinux_booleans</h2>
module.</p>
<div class="sourceCode" id="cb4"><pre
class="sourceCode yaml"><code class="sourceCode yaml"><span id="cb4-1"><a href="#cb4-1" aria-hidden="true" tabindex="-1"></a><span class="fu">selinux_booleans</span><span class="kw">:</span></span>
<span id="cb4-2"><a href="#cb4-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">name</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;samba_enable_home_dirs&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="ch">true</span><span class="kw">}</span></span>
<span id="cb4-3"><a href="#cb4-3" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">name</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;ssh_sysadm_login&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="ch">true</span><span class="kw">,</span><span class="at"> </span><span class="fu">persistent</span><span class="kw">:</span><span class="at"> </span><span class="ch">true</span><span class="kw">}</span></span></code></pre></div>
<span id="cb4-2"><a href="#cb4-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">name</span><span class="kw">:</span><span class="at"> samba_enable_home_dirs</span></span>
<span id="cb4-3"><a href="#cb4-3" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="ch">true</span></span>
<span id="cb4-4"><a href="#cb4-4" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">name</span><span class="kw">:</span><span class="at"> ssh_sysadm_login</span></span>
<span id="cb4-5"><a href="#cb4-5" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="ch">true</span></span>
<span id="cb4-6"><a href="#cb4-6" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">persistent</span><span class="kw">:</span><span class="at"> </span><span class="ch">true</span></span></code></pre></div>
<h2 id="selinux_fcontexts">selinux_fcontexts</h2>
<p>Manage the state of SELinux file context mapping definitions. This is
a <code>list</code> of <code>dict</code>, where each <code>dict</code>
Expand All @@ -255,7 +258,10 @@ <h2 id="selinux_fcontexts">selinux_fcontexts</h2>
module.</p>
<div class="sourceCode" id="cb5"><pre
class="sourceCode yaml"><code class="sourceCode yaml"><span id="cb5-1"><a href="#cb5-1" aria-hidden="true" tabindex="-1"></a><span class="fu">selinux_fcontexts</span><span class="kw">:</span></span>
<span id="cb5-2"><a href="#cb5-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">target</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;/tmp/test_dir(/.*)?&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">setype</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;user_home_dir_t&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">ftype</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;d&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;present&#39;</span><span class="kw">}</span></span></code></pre></div>
<span id="cb5-2"><a href="#cb5-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">target</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;/tmp/test_dir(/.*)?&#39;</span></span>
<span id="cb5-3"><a href="#cb5-3" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">setype</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;user_home_dir_t&#39;</span></span>
<span id="cb5-4"><a href="#cb5-4" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">ftype</span><span class="kw">:</span><span class="at"> d</span></span>
<span id="cb5-5"><a href="#cb5-5" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> present</span></span></code></pre></div>
<p>Users may also pass the following optional parameters:</p>
<ul>
<li><code>seuser</code>: to set the SELinux user</li>
Expand All @@ -273,7 +279,11 @@ <h2 id="selinux_ports">selinux_ports</h2>
module.</p>
<div class="sourceCode" id="cb6"><pre
class="sourceCode yaml"><code class="sourceCode yaml"><span id="cb6-1"><a href="#cb6-1" aria-hidden="true" tabindex="-1"></a><span class="fu">selinux_ports</span><span class="kw">:</span></span>
<span id="cb6-2"><a href="#cb6-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">ports</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;22100&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">proto</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;tcp&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">setype</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;ssh_port_t&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;present&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">local</span><span class="kw">:</span><span class="at"> </span><span class="ch">true</span><span class="kw">}</span></span></code></pre></div>
<span id="cb6-2"><a href="#cb6-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">ports</span><span class="kw">:</span><span class="at"> </span><span class="dv">22100</span></span>
<span id="cb6-3"><a href="#cb6-3" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">proto</span><span class="kw">:</span><span class="at"> tcp</span></span>
<span id="cb6-4"><a href="#cb6-4" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">setype</span><span class="kw">:</span><span class="at"> ssh_port_t</span></span>
<span id="cb6-5"><a href="#cb6-5" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> present</span></span>
<span id="cb6-6"><a href="#cb6-6" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">local</span><span class="kw">:</span><span class="at"> </span><span class="ch">true</span></span></code></pre></div>
<h2 id="selinux_restore_dirs">selinux_restore_dirs</h2>
<p>This is a <code>list</code> of strings, where each string is a
filesystem tree where you want to run <code>restorecon</code>:</p>
Expand All @@ -288,18 +298,29 @@ <h2 id="selinux_logins">selinux_logins</h2>
module.</p>
<div class="sourceCode" id="cb8"><pre
class="sourceCode yaml"><code class="sourceCode yaml"><span id="cb8-1"><a href="#cb8-1" aria-hidden="true" tabindex="-1"></a><span class="fu">selinux_logins</span><span class="kw">:</span></span>
<span id="cb8-2"><a href="#cb8-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">login</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;plautrba&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">seuser</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;staff_u&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;absent&#39;</span><span class="kw">}</span></span>
<span id="cb8-3"><a href="#cb8-3" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">login</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;__default__&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">seuser</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;staff_u&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">serange</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;s0-s0:c0.c1023&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;present&#39;</span><span class="kw">}</span></span></code></pre></div>
<span id="cb8-2"><a href="#cb8-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">login</span><span class="kw">:</span><span class="at"> plautrba</span></span>
<span id="cb8-3"><a href="#cb8-3" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">seuser</span><span class="kw">:</span><span class="at"> staff_u</span></span>
<span id="cb8-4"><a href="#cb8-4" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> absent</span></span>
<span id="cb8-5"><a href="#cb8-5" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">login</span><span class="kw">:</span><span class="at"> default</span></span>
<span id="cb8-6"><a href="#cb8-6" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">seuser</span><span class="kw">:</span><span class="at"> staff_u</span></span>
<span id="cb8-7"><a href="#cb8-7" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">serange</span><span class="kw">:</span><span class="at"> s0-s0:c0.c1023</span></span>
<span id="cb8-8"><a href="#cb8-8" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> present</span></span></code></pre></div>
<h2 id="selinux_modules">selinux_modules</h2>
<p>It is possible to manage SELinux modules using
<code>selinux_modules</code> variable which would contain a
<code>list</code> of <code>dict</code>, e.g.:</p>
<div class="sourceCode" id="cb9"><pre
class="sourceCode yaml"><code class="sourceCode yaml"><span id="cb9-1"><a href="#cb9-1" aria-hidden="true" tabindex="-1"></a><span class="fu">selinux_modules</span><span class="kw">:</span></span>
<span id="cb9-2"><a href="#cb9-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">path</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;localmodule.pp&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;enabled&#39;</span><span class="kw">}</span></span>
<span id="cb9-3"><a href="#cb9-3" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">path</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;localmodule.cil&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">priority</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;350&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;enabled&#39;</span><span class="kw">}</span></span>
<span id="cb9-4"><a href="#cb9-4" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">name</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;unconfineduser&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;disabled&#39;</span><span class="kw">}</span></span>
<span id="cb9-5"><a href="#cb9-5" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="kw">{</span><span class="fu">name</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;localmodule&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">priority</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;350&#39;</span><span class="kw">,</span><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> </span><span class="st">&#39;absent&#39;</span><span class="kw">}</span></span></code></pre></div>
<span id="cb9-2"><a href="#cb9-2" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">path</span><span class="kw">:</span><span class="at"> localmodule.pp</span></span>
<span id="cb9-3"><a href="#cb9-3" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> enabled</span></span>
<span id="cb9-4"><a href="#cb9-4" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">path</span><span class="kw">:</span><span class="at"> localmodule.cil</span></span>
<span id="cb9-5"><a href="#cb9-5" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">priority</span><span class="kw">:</span><span class="at"> </span><span class="dv">350</span></span>
<span id="cb9-6"><a href="#cb9-6" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> enabled</span></span>
<span id="cb9-7"><a href="#cb9-7" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">name</span><span class="kw">:</span><span class="at"> unconfineduser</span></span>
<span id="cb9-8"><a href="#cb9-8" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> disabled</span></span>
<span id="cb9-9"><a href="#cb9-9" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="kw">-</span><span class="at"> </span><span class="fu">name</span><span class="kw">:</span><span class="at"> localmodule</span></span>
<span id="cb9-10"><a href="#cb9-10" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">priority</span><span class="kw">:</span><span class="at"> </span><span class="dv">350</span></span>
<span id="cb9-11"><a href="#cb9-11" aria-hidden="true" tabindex="-1"></a><span class="at"> </span><span class="fu">state</span><span class="kw">:</span><span class="at"> absent</span></span></code></pre></div>
<ul>
<li><code>path</code>: a local module file (either .cil or .pp) to be
installed on a node, used for installing new modules</li>
Expand Down
14 changes: 14 additions & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -1,6 +1,20 @@
Changelog
=========

[1.7.2] - 2023-12-08
--------------------

### Bug Fixes

- fix: no longer use "item" as a loop variable (#217)
- fix: Print an error message when module to be created doesn't exist (#218)

### Other Changes

- ci: bump actions/github-script from 6 to 7 (#214)
- refactor: get_ostree_data.sh use env shebang - remove from .sanity* (#215)
- docs: Update docs to use yaml style when defining vars (#219)

[1.7.1] - 2023-11-22
--------------------

Expand Down

0 comments on commit f53efd7

Please sign in to comment.