Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Jason Zaman <perfinion@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/system/
Date: Sat, 09 Sep 2017 03:02:18
Message-Id: 1504925819.b70c273305b2afca822fe624279ddfad28ac550a.perfinion@gentoo
1 commit: b70c273305b2afca822fe624279ddfad28ac550a
2 Author: David Sugar <dsugar <AT> tresys <DOT> com>
3 AuthorDate: Fri Sep 8 17:50:24 2017 +0000
4 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
5 CommitDate: Sat Sep 9 02:56:59 2017 +0000
6 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=b70c2733
7
8 Label RHEL specific systemd binaries
9
10 Label RHEL specific systemd binaries /usr/lib/systemd/rhel* as initrc_exec_t.
11 Now in the proper location.
12
13 Signed-off-by: Dave Sugar <dsugar <AT> tresys.com>
14
15 policy/modules/system/init.fc | 4 ++++
16 1 file changed, 4 insertions(+)
17
18 diff --git a/policy/modules/system/init.fc b/policy/modules/system/init.fc
19 index 0cc3cd8f..8a8ce871 100644
20 --- a/policy/modules/system/init.fc
21 +++ b/policy/modules/system/init.fc
22 @@ -38,6 +38,10 @@ ifdef(`distro_gentoo', `
23 /usr/lib/rc/init\.d(/.*)? gen_context(system_u:object_r:initrc_state_t,s0)
24 ')
25
26 +ifdef(`distro_redhat',`
27 +/usr/lib/systemd/rhel[^/]* -- gen_context(system_u:object_r:initrc_exec_t,s0)
28 +')
29 +
30 /usr/libexec/dcc/start-.* -- gen_context(system_u:object_r:initrc_exec_t,s0)
31 /usr/libexec/dcc/stop-.* -- gen_context(system_u:object_r:initrc_exec_t,s0)
Report Message
Find on MARC Find on Google Groups