| 1 |
commit: 9c0dcd8c971259c2af31fb6fdc133388aa478a29 |
| 2 |
Author: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be> |
| 3 |
AuthorDate: Tue Mar 3 15:18:48 2015 +0000 |
| 4 |
Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org> |
| 5 |
CommitDate: Tue Mar 3 15:18:48 2015 +0000 |
| 6 |
URL: http://sources.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=9c0dcd8c |
| 7 |
|
| 8 |
Fix bug #541990 - Grant setfscreate to semanage_migrate_store [semanage_t] |
| 9 |
|
| 10 |
policy/modules/system/selinuxutil.te | 8 ++++++++ |
| 11 |
1 file changed, 8 insertions(+) |
| 12 |
|
| 13 |
diff --git a/policy/modules/system/selinuxutil.te b/policy/modules/system/selinuxutil.te |
| 14 |
index b0d14cb..9b70f53 100644 |
| 15 |
--- a/policy/modules/system/selinuxutil.te |
| 16 |
+++ b/policy/modules/system/selinuxutil.te |
| 17 |
@@ -667,4 +667,12 @@ ifdef(`distro_gentoo',` |
| 18 |
|
| 19 |
# Moved out of files_relabel_non_auth_files as it cannot be used in tunable_policy otherwise |
| 20 |
seutil_relabelto_bin_policy(restorecond_t) |
| 21 |
+ |
| 22 |
+ ########################################## |
| 23 |
+ # |
| 24 |
+ # semanage local policy |
| 25 |
+ # |
| 26 |
+ |
| 27 |
+ # Fix bug #541990 - Grant setfscreate privilege to allow semanage_migrate_store to work properly |
| 28 |
+ allow semanage_t self:process { setfscreate }; |
| 29 |
') |
Archives