Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Jason Zaman <perfinion@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/services/
Date: Sun, 05 Sep 2021 16:00:24
Message-Id: 1630852004.97fef06309db4270e3979d056b138e77f9494935.perfinion@gentoo
1 commit: 97fef06309db4270e3979d056b138e77f9494935
2 Author: Fabrice Fontaine <fontaine.fabrice <AT> gmail <DOT> com>
3 AuthorDate: Mon Aug 9 20:51:46 2021 +0000
4 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
5 CommitDate: Sun Sep 5 14:26:44 2021 +0000
6 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=97fef063
7
8 policy/modules/services/ifplugd.te: make netutils optional
9
10 Make netutils optional to avoid the following build failure:
11
12 Compiling targeted policy.30
13 env LD_LIBRARY_PATH="/tmp/instance-3/output-1/host/lib:/tmp/instance-3/output-1/host/usr/lib" /tmp/instance-3/output-1/host/usr/bin/checkpolicy -c 30 -U deny -S -O -E policy.conf -o policy.30
14 policy/modules/services/ifplugd.te:62:ERROR 'type netutils_exec_t is not within scope' at token ';' on line 73694:
15 #line 62
16 allow ifplugd_t netutils_exec_t:file { getattr open map read execute ioctl };
17 checkpolicy: error(s) encountered while parsing configuration
18
19 Fixes:
20 - http://autobuild.buildroot.org/results/1e27f5b193d40dfb7c73fbe15d1bef91cb92c27d
21
22 Signed-off-by: Fabrice Fontaine <fontaine.fabrice <AT> gmail.com>
23 Signed-off-by: Jason Zaman <perfinion <AT> gentoo.org>
24
25 policy/modules/services/ifplugd.te | 6 ++++--
26 1 file changed, 4 insertions(+), 2 deletions(-)
27
28 diff --git a/policy/modules/services/ifplugd.te b/policy/modules/services/ifplugd.te
29 index f49b147f..550eecca 100644
30 --- a/policy/modules/services/ifplugd.te
31 +++ b/policy/modules/services/ifplugd.te
32 @@ -59,8 +59,6 @@ logging_send_syslog_msg(ifplugd_t)
33
34 miscfiles_read_localization(ifplugd_t)
35
36 -netutils_domtrans(ifplugd_t)
37 -
38 sysnet_domtrans_ifconfig(ifplugd_t)
39 sysnet_domtrans_dhcpc(ifplugd_t)
40 sysnet_delete_dhcpc_runtime_files(ifplugd_t)
41 @@ -70,3 +68,7 @@ sysnet_signal_dhcpc(ifplugd_t)
42 optional_policy(`
43 consoletype_exec(ifplugd_t)
44 ')
45 +
46 +optional_policy(`
47 + netutils_domtrans(ifplugd_t)
48 +')
Report Message
Find on MARC Find on Google Groups