diff options
| author | Nicolas Iooss | 2016-01-05 19:03:38 +0100 |
|---|---|---|
| committer | Nicolas Iooss | 2016-01-05 19:03:38 +0100 |
| commit | 4a4f7abbda02076a1354329de419e494a3157545 (patch) | |
| tree | cacb38c7c89153ef2499bc79d5096cf082018b01 /0004-Label-some-user-session-DBus-services-as-bin_t.patch | |
| parent | 21a21b517c4aee0ec3bf397fbf3c05746eb59669 (diff) | |
| download | aur-4a4f7abbda02076a1354329de419e494a3157545.tar.gz | |
Add patches to make refpolicy more Arch Linux-friendly
Much work still needs to be done.
Diffstat (limited to '0004-Label-some-user-session-DBus-services-as-bin_t.patch')
| -rw-r--r-- | 0004-Label-some-user-session-DBus-services-as-bin_t.patch | 35 |
1 files changed, 35 insertions, 0 deletions
diff --git a/0004-Label-some-user-session-DBus-services-as-bin_t.patch b/0004-Label-some-user-session-DBus-services-as-bin_t.patch new file mode 100644 index 000000000000..5e948ec64471 --- /dev/null +++ b/0004-Label-some-user-session-DBus-services-as-bin_t.patch @@ -0,0 +1,35 @@ +From fb601911cc2dd06fca20117389e6e27411db6763 Mon Sep 17 00:00:00 2001 +From: Nicolas Iooss <nicolas.iooss@m4x.org> +Date: Tue, 5 Jan 2016 17:56:17 +0100 +Subject: [PATCH] Label some user session DBus services as bin_t + +--- + policy/modules/kernel/corecommands.fc | 3 +++ + 1 file changed, 3 insertions(+) + +diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc +index fed2613768ba..539669a9aadd 100644 +--- a/policy/modules/kernel/corecommands.fc ++++ b/policy/modules/kernel/corecommands.fc +@@ -194,6 +194,7 @@ ifdef(`distro_gentoo',` + /usr/(.*/)?sbin(/.*)? gen_context(system_u:object_r:bin_t,s0) + /usr/lib(.*/)?sbin(/.*)? gen_context(system_u:object_r:bin_t,s0) + ++/usr/lib/at-spi2-core(/.*)? gen_context(system_u:object_r:bin_t,s0) + /usr/lib/avahi/avahi-daemon-check-dns\.sh -- gen_context(system_u:object_r:bin_t,s0) + /usr/lib/ccache/bin(/.*)? gen_context(system_u:object_r:bin_t,s0) + /usr/lib/fence(/.*)? gen_context(system_u:object_r:bin_t,s0) +@@ -207,8 +208,10 @@ ifdef(`distro_gentoo',` + /usr/lib/cups(/.*)? gen_context(system_u:object_r:bin_t,s0) + /usr/lib/cyrus/.* -- gen_context(system_u:object_r:bin_t,s0) + /usr/lib/cyrus-imapd/.* -- gen_context(system_u:object_r:bin_t,s0) ++/usr/lib/dconf/dconf-service -- gen_context(system_u:object_r:bin_t,s0) + /usr/lib/dpkg/.+ -- gen_context(system_u:object_r:bin_t,s0) + /usr/lib/emacsen-common/.* gen_context(system_u:object_r:bin_t,s0) ++/usr/lib/evince/evinced -- gen_context(system_u:object_r:bin_t,s0) + /usr/lib/getconf(/.*)? gen_context(system_u:object_r:bin_t,s0) + /usr/lib/gimp/.*/plug-ins(/.*)? gen_context(system_u:object_r:bin_t,s0) + /usr/lib/git-core/git-shell -- gen_context(system_u:object_r:shell_exec_t,s0) +-- +2.6.4 + |