[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/kernel/

Jason Zaman Fri, 08 Sep 2017 19:44:18 -0700

commit:     549b6dbb3f5ae4e0645aa0bbc657187776c4f305
Author:     Nicolas Iooss <nicolas.iooss <AT> m4x <DOT> org>
AuthorDate: Wed Sep  6 20:44:17 2017 +0000
Commit:     Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Fri Sep  8 22:39:50 2017 +0000
URL:        
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=549b6dbb


corecommands: label Arch Linux pacman's scripts as bin_t

On Arch Linux, the package manager uses hooks which execute scripts in
/usr/share/libalpm/scripts.

 policy/modules/kernel/corecommands.fc | 1 +
 1 file changed, 1 insertion(+)

diff --git a/policy/modules/kernel/corecommands.fc 
b/policy/modules/kernel/corecommands.fc
index 1b556308..37760a87 100644
--- a/policy/modules/kernel/corecommands.fc
+++ b/policy/modules/kernel/corecommands.fc
@@ -310,6 +310,7 @@ ifdef(`distro_gentoo',`
 /usr/share/GNUstep/Makefiles/mkinstalldirs     --      
gen_context(system_u:object_r:bin_t,s0)
 /usr/share/hal/device-manager/hal-device-manager -- 
gen_context(system_u:object_r:bin_t,s0)
 /usr/share/hal/scripts(/.*)?           gen_context(system_u:object_r:bin_t,s0)
+/usr/share/libalpm/scripts(/.*)?       gen_context(system_u:object_r:bin_t,s0)
 /usr/share/mc/extfs/.*         --      gen_context(system_u:object_r:bin_t,s0)
 /usr/share/Modules/init(/.*)?          gen_context(system_u:object_r:bin_t,s0)
 /usr/share/org.gnome.Weather/org\.gnome\.Weather\.Application  --      
gen_context(system_u:object_r:bin_t,s0)

[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/kernel/

Reply via email to