Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Sven Vermeulen <swift@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/contrib/
Date: Mon, 30 Sep 2013 19:03:51
Message-Id: 1380567659.4b108396078378833c8aff9fc860bf35576b7923.swift@gentoo
1 commit: 4b108396078378833c8aff9fc860bf35576b7923
2 Author: Dominick Grift <dominick.grift <AT> gmail <DOT> com>
3 AuthorDate: Thu Sep 26 06:42:55 2013 +0000
4 Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org>
5 CommitDate: Mon Sep 30 19:00:59 2013 +0000
6 URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=4b108396
7
8 dpkg: catch /etc/cron.daily/dpkg on Debian dpkg: allow /etc/cron.daily/dpkg to manage backup store files on Debian
9
10 Signed-off-by: Dominick Grift <dominick.grift <AT> gmail.com>
11
12 ---
13 policy/modules/contrib/dpkg.fc | 2 ++
14 policy/modules/contrib/dpkg.te | 6 +++++-
15 2 files changed, 7 insertions(+), 1 deletion(-)
16
17 diff --git a/policy/modules/contrib/dpkg.fc b/policy/modules/contrib/dpkg.fc
18 index 751c251..eec3c48 100644
19 --- a/policy/modules/contrib/dpkg.fc
20 +++ b/policy/modules/contrib/dpkg.fc
21 @@ -1,3 +1,5 @@
22 +/etc/cron\.daily/dpkg -- gen_context(system_u:object_r:dpkg_exec_t,s0)
23 +
24 /usr/bin/debsums -- gen_context(system_u:object_r:dpkg_exec_t,s0)
25 /usr/bin/dpkg -- gen_context(system_u:object_r:dpkg_exec_t,s0)
26 /usr/bin/dselect -- gen_context(system_u:object_r:dpkg_exec_t,s0)
27
28 diff --git a/policy/modules/contrib/dpkg.te b/policy/modules/contrib/dpkg.te
29 index 998d765..62d99a9 100644
30 --- a/policy/modules/contrib/dpkg.te
31 +++ b/policy/modules/contrib/dpkg.te
32 @@ -1,4 +1,4 @@
33 -policy_module(dpkg, 1.10.0)
34 +policy_module(dpkg, 1.10.1)
35
36 ########################################
37 #
38 @@ -161,6 +161,10 @@ optional_policy(`
39 ')
40
41 optional_policy(`
42 + backup_manage_store_files(dpkg_t)
43 +')
44 +
45 +optional_policy(`
46 cron_system_entry(dpkg_t, dpkg_exec_t)
47 ')
Report Message
Find on MARC Find on Google Groups