commit: 3a6d2a23dd689eaac41d3534c954c24e9c2dc3f2 Author: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be> AuthorDate: Sun Aug 31 18:26:32 2014 +0000 Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org> CommitDate: Sun Aug 31 18:26:32 2014 +0000 URL: http://sources.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=3a6d2a23
Python-exec wrappers has scripts in specific location, mark those as bin_t --- policy/modules/kernel/corecommands.fc | 3 +++ 1 file changed, 3 insertions(+) diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc index 52cb3ee..7e1b58c 100644 --- a/policy/modules/kernel/corecommands.fc +++ b/policy/modules/kernel/corecommands.fc @@ -422,5 +422,8 @@ ifdef(`distro_suse',` ') ifdef(`distro_gentoo',` +/usr/lib/python-exec/python-exec2 -- gen_context(system_u:object_r:bin_t,s0) +/usr/lib/python-exec/python.*/.* -- gen_context(system_u:object_r:bin_t,s0) + /usr/lib/xfce4/notifyd/xfce4-notifyd -- gen_context(system_u:object_r:bin_t,s0) ')
