[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/system/

Jason Zaman Sun, 21 Mar 2021 15:11:05 -0700

commit:     e02aa6654e83cde6d24080f8a3ac5363ffed0bdb
Author:     Krzysztof Nowicki <krissn <AT> op <DOT> pl>
AuthorDate: Wed Feb  3 21:33:01 2021 +0000
Commit:     Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Mon Feb 15 19:49:24 2021 +0000
URL:        
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=e02aa665


Allow systemd-tmpfilesd handle faillog directory

Is is being created from a pam-provided tmpfiles.d config.

Signed-off-by: Krzysztof Nowicki <krissn <AT> op.pl>
Signed-off-by: Jason Zaman <perfinion <AT> gentoo.org>

 policy/modules/system/authlogin.te | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/policy/modules/system/authlogin.te 
b/policy/modules/system/authlogin.te
index 6fc4097e..5c8f8b4c 100644
--- a/policy/modules/system/authlogin.te
+++ b/policy/modules/system/authlogin.te
@@ -87,7 +87,7 @@ type wtmp_t;
 logging_log_file(wtmp_t)
 
 optional_policy(`
-       systemd_tmpfilesd_managed(faillog_t, file)
+       systemd_tmpfilesd_managed(faillog_t, { dir file })
        systemd_tmpfilesd_managed(var_auth_t, dir)
 ')

[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/system/

Reply via email to