commit: d959ec112471aa95de755bc7ec46fc0ca06031d7 Author: Chad Hanson <dahchanson <AT> gmail <DOT> com> AuthorDate: Mon Dec 11 04:04:36 2017 +0000 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org> CommitDate: Wed Dec 13 14:26:59 2017 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=d959ec11
Allow rpm to relabel files at all levels This patch adds MLS relabel ability to rpm per the previous email request: http://oss.tresys.com/pipermail/refpolicy/2016-July/008038.html Signed-off-by: Chad Hanson <dahchanson <AT> gmail.com> policy/modules/contrib/rpm.te | 1 + 1 file changed, 1 insertion(+) diff --git a/policy/modules/contrib/rpm.te b/policy/modules/contrib/rpm.te index 44e8c7b5..9b1c1048 100644 --- a/policy/modules/contrib/rpm.te +++ b/policy/modules/contrib/rpm.te @@ -174,6 +174,7 @@ fs_search_auto_mountpoints(rpm_t) mls_file_read_all_levels(rpm_t) mls_file_write_all_levels(rpm_t) +mls_file_relabel(rpm_t) mls_file_upgrade(rpm_t) mls_file_downgrade(rpm_t)
