commit: 73e1663246b8b6b61342f8b7ce46238f32cf3731 Author: Nicolas Iooss <nicolas.iooss <AT> m4x <DOT> org> AuthorDate: Sat Mar 19 09:30:42 2016 +0000 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org> CommitDate: Wed Mar 23 17:53:49 2016 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=73e16632
Label some user session DBus services as bin_t policy/modules/kernel/corecommands.fc | 3 +++ 1 file changed, 3 insertions(+) diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc index 6638e83..1e8e894 100644 --- a/policy/modules/kernel/corecommands.fc +++ b/policy/modules/kernel/corecommands.fc @@ -198,6 +198,7 @@ ifdef(`distro_gentoo',` /usr/(.*/)?sbin(/.*)? gen_context(system_u:object_r:bin_t,s0) /usr/lib(.*/)?sbin(/.*)? gen_context(system_u:object_r:bin_t,s0) +/usr/lib/at-spi2-core(/.*)? gen_context(system_u:object_r:bin_t,s0) /usr/lib/avahi/avahi-daemon-check-dns\.sh -- gen_context(system_u:object_r:bin_t,s0) /usr/lib/ccache/bin(/.*)? gen_context(system_u:object_r:bin_t,s0) /usr/lib/fence(/.*)? gen_context(system_u:object_r:bin_t,s0) @@ -212,8 +213,10 @@ ifdef(`distro_gentoo',` /usr/lib/cups(/.*)? gen_context(system_u:object_r:bin_t,s0) /usr/lib/cyrus/.* -- gen_context(system_u:object_r:bin_t,s0) /usr/lib/cyrus-imapd/.* -- gen_context(system_u:object_r:bin_t,s0) +/usr/lib/dconf/dconf-service -- gen_context(system_u:object_r:bin_t,s0) /usr/lib/dpkg/.+ -- gen_context(system_u:object_r:bin_t,s0) /usr/lib/emacsen-common/.* gen_context(system_u:object_r:bin_t,s0) +/usr/lib/evince/evinced -- gen_context(system_u:object_r:bin_t,s0) /usr/lib/getconf(/.*)? gen_context(system_u:object_r:bin_t,s0) /usr/lib/gimp/.*/plug-ins(/.*)? gen_context(system_u:object_r:bin_t,s0) /usr/lib/git-core/git-shell -- gen_context(system_u:object_r:shell_exec_t,s0)
