GET

Cover Letter Detail

Show a cover letter.

GET /api/covers/808460/?format=api
HTTP 200 OK
Allow: GET, HEAD, OPTIONS
Content-Type: application/json
Vary: Accept

{
    "id": 808460,
    "url": "http://patchwork.ozlabs.org/api/covers/808460/?format=api",
    "web_url": "http://patchwork.ozlabs.org/project/openvswitch/cover/20170831232245.3644-1-aconole@redhat.com/",
    "project": {
        "id": 47,
        "url": "http://patchwork.ozlabs.org/api/projects/47/?format=api",
        "name": "Open vSwitch",
        "link_name": "openvswitch",
        "list_id": "ovs-dev.openvswitch.org",
        "list_email": "ovs-dev@openvswitch.org",
        "web_url": "http://openvswitch.org/",
        "scm_url": "git@github.com:openvswitch/ovs.git",
        "webscm_url": "https://github.com/openvswitch/ovs",
        "list_archive_url": "",
        "list_archive_url_format": "",
        "commit_url_format": ""
    },
    "msgid": "<20170831232245.3644-1-aconole@redhat.com>",
    "list_archive_url": null,
    "date": "2017-08-31T23:22:42",
    "name": "[ovs-dev,v3,0/3] updated selinux policy for Open vSwitch",
    "submitter": {
        "id": 67184,
        "url": "http://patchwork.ozlabs.org/api/people/67184/?format=api",
        "name": "Aaron Conole",
        "email": "aconole@redhat.com"
    },
    "mbox": "http://patchwork.ozlabs.org/project/openvswitch/cover/20170831232245.3644-1-aconole@redhat.com/mbox/",
    "series": [
        {
            "id": 921,
            "url": "http://patchwork.ozlabs.org/api/series/921/?format=api",
            "web_url": "http://patchwork.ozlabs.org/project/openvswitch/list/?series=921",
            "date": "2017-08-31T23:22:42",
            "name": "updated selinux policy for Open vSwitch",
            "version": 3,
            "mbox": "http://patchwork.ozlabs.org/series/921/mbox/"
        }
    ],
    "comments": "http://patchwork.ozlabs.org/api/covers/808460/comments/",
    "headers": {
        "Return-Path": "<ovs-dev-bounces@openvswitch.org>",
        "X-Original-To": [
            "incoming@patchwork.ozlabs.org",
            "dev@openvswitch.org"
        ],
        "Delivered-To": [
            "patchwork-incoming@bilbo.ozlabs.org",
            "ovs-dev@mail.linuxfoundation.org"
        ],
        "Authentication-Results": [
            "ozlabs.org;\n\tspf=pass (mailfrom) smtp.mailfrom=openvswitch.org\n\t(client-ip=140.211.169.12; helo=mail.linuxfoundation.org;\n\tenvelope-from=ovs-dev-bounces@openvswitch.org;\n\treceiver=<UNKNOWN>)",
            "ext-mx01.extmail.prod.ext.phx2.redhat.com;\n\tdmarc=none (p=none dis=none) header.from=redhat.com",
            "ext-mx01.extmail.prod.ext.phx2.redhat.com;\n\tspf=fail smtp.mailfrom=aconole@redhat.com"
        ],
        "Received": [
            "from mail.linuxfoundation.org (mail.linuxfoundation.org\n\t[140.211.169.12])\n\t(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256\n\tbits)) (No client certificate requested)\n\tby ozlabs.org (Postfix) with ESMTPS id 3xjz1k3qGSz9s8J\n\tfor <incoming@patchwork.ozlabs.org>;\n\tFri,  1 Sep 2017 09:22:50 +1000 (AEST)",
            "from mail.linux-foundation.org (localhost [127.0.0.1])\n\tby mail.linuxfoundation.org (Postfix) with ESMTP id 1A612E3F;\n\tThu, 31 Aug 2017 23:22:48 +0000 (UTC)",
            "from smtp1.linuxfoundation.org (smtp1.linux-foundation.org\n\t[172.17.192.35])\n\tby mail.linuxfoundation.org (Postfix) with ESMTPS id 20C6AE39\n\tfor <dev@openvswitch.org>; Thu, 31 Aug 2017 23:22:47 +0000 (UTC)",
            "from mx1.redhat.com (mx1.redhat.com [209.132.183.28])\n\tby smtp1.linuxfoundation.org (Postfix) with ESMTPS id 9C675196\n\tfor <dev@openvswitch.org>; Thu, 31 Aug 2017 23:22:46 +0000 (UTC)",
            "from smtp.corp.redhat.com\n\t(int-mx02.intmail.prod.int.phx2.redhat.com [10.5.11.12])\n\t(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))\n\t(No client certificate requested)\n\tby mx1.redhat.com (Postfix) with ESMTPS id 05BA681E15;\n\tThu, 31 Aug 2017 23:22:46 +0000 (UTC)",
            "from dhcp-25-97.bos.redhat.com (ovpn-121-92.rdu2.redhat.com\n\t[10.10.121.92])\n\tby smtp.corp.redhat.com (Postfix) with ESMTP id 77F0B60F82;\n\tThu, 31 Aug 2017 23:22:45 +0000 (UTC)"
        ],
        "X-Greylist": [
            "domain auto-whitelisted by SQLgrey-1.7.6",
            "Sender IP whitelisted, not delayed by milter-greylist-4.5.16\n\t(mx1.redhat.com [10.5.110.25]);\n\tThu, 31 Aug 2017 23:22:46 +0000 (UTC)"
        ],
        "DMARC-Filter": "OpenDMARC Filter v1.3.2 mx1.redhat.com 05BA681E15",
        "From": "Aaron Conole <aconole@redhat.com>",
        "To": "dev@openvswitch.org",
        "Date": "Thu, 31 Aug 2017 19:22:42 -0400",
        "Message-Id": "<20170831232245.3644-1-aconole@redhat.com>",
        "X-Scanned-By": "MIMEDefang 2.79 on 10.5.11.12",
        "X-Spam-Status": "No, score=-5.0 required=5.0 tests=RCVD_IN_DNSWL_HI,\n\tRP_MATCHES_RCVD autolearn=disabled version=3.3.1",
        "X-Spam-Checker-Version": "SpamAssassin 3.3.1 (2010-03-16) on\n\tsmtp1.linux-foundation.org",
        "Cc": "Flavio Leitner <fbl@sysclose.org>, Ansis Atteka <aatteka@ovn.org>",
        "Subject": "[ovs-dev] [PATCH v3 0/3] updated selinux policy for Open vSwitch",
        "X-BeenThere": "ovs-dev@openvswitch.org",
        "X-Mailman-Version": "2.1.12",
        "Precedence": "list",
        "List-Id": "<ovs-dev.openvswitch.org>",
        "List-Unsubscribe": "<https://mail.openvswitch.org/mailman/options/ovs-dev>,\n\t<mailto:ovs-dev-request@openvswitch.org?subject=unsubscribe>",
        "List-Archive": "<http://mail.openvswitch.org/pipermail/ovs-dev/>",
        "List-Post": "<mailto:ovs-dev@openvswitch.org>",
        "List-Help": "<mailto:ovs-dev-request@openvswitch.org?subject=help>",
        "List-Subscribe": "<https://mail.openvswitch.org/mailman/listinfo/ovs-dev>,\n\t<mailto:ovs-dev-request@openvswitch.org?subject=subscribe>",
        "MIME-Version": "1.0",
        "Content-Type": "text/plain; charset=\"us-ascii\"",
        "Content-Transfer-Encoding": "7bit",
        "Sender": "ovs-dev-bounces@openvswitch.org",
        "Errors-To": "ovs-dev-bounces@openvswitch.org"
    },
    "content": "This series brings about a policy update to openvswitch allowing it to\nrun on a RHEL / Fedora system, even as a non-root user, with selinux set\nto Enforcing.\n\nThe first two patches make some changes to the way the selinux policy is\nbuilt to have a macro-like effect, allowing the dpdk policy to be enabled\nor disabled based on the build.  This is chosen instead of using an selinux\nboolean, because it is more transparent to the end user.\n\nAll of this work was tested by passing traffic, including via a dpdk bridge.\n\nI'm hoping that this can be backported to the 2.8 branch (since it would be\nneeded to make fedora 2.8 make sense), but if not, we can always do the manual\nbackport\n\nOriginal Series:\nhttps://mail.openvswitch.org/pipermail/ovs-dev/2017-August/337513.html\n\nv2->v3:\n* move tun_tap_device_t permissions to be more general purpose\n\nv1->v2:\n* updated after PVP testing.  There are still permissions needed to be added\n  to libvirt / qemu, but that is outside the scope of Open vSwitch project.\n* Folded in Flavio Leitner's ACK\n\nAaron Conole (3):\n  rhel: make the selinux policy intermediate\n  makefile: hook up dpdkstrip preprocessor\n  selinux: update policy to reflect non-root and dpdk support\n\n Makefile.am                      |  4 +++\n rhel/openvswitch-fedora.spec.in  |  1 +\n selinux/automake.mk              |  2 +-\n selinux/openvswitch-custom.te    | 16 ------------\n selinux/openvswitch-custom.te.in | 54 ++++++++++++++++++++++++++++++++++++++++\n 5 files changed, 60 insertions(+), 17 deletions(-)\n delete mode 100644 selinux/openvswitch-custom.te\n create mode 100644 selinux/openvswitch-custom.te.in"
}