Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-2.1 required=3.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI, SPF_PASS autolearn=ham autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id ABD0DC43387 for ; Mon, 14 Jan 2019 22:47:52 +0000 (UTC) Received: from vger.kernel.org (vger.kernel.org [209.132.180.67]) by mail.kernel.org (Postfix) with ESMTP id 76D30205F4 for ; Mon, 14 Jan 2019 22:47:52 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (1024-bit key) header.d=ieee.org header.i=@ieee.org header.b="AUAw2dbn" Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726865AbfANWrw (ORCPT ); Mon, 14 Jan 2019 17:47:52 -0500 Received: from mail-qt1-f193.google.com ([209.85.160.193]:44330 "EHLO mail-qt1-f193.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726618AbfANWrw (ORCPT ); Mon, 14 Jan 2019 17:47:52 -0500 Received: by mail-qt1-f193.google.com with SMTP id n32so908219qte.11 for ; Mon, 14 Jan 2019 14:47:51 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ieee.org; s=google; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=2nvEWeUa8S56mfabvVC7CsMaY7bezGMGHvaj/4h879A=; b=AUAw2dbnFtA0w2MccsIdbEDCubhK4S01FPPS++84ukw+QHUTCuoS61lTfBDR2hl029 mRzMMmUOHcQst6X1UewWLYIxYsUTZldEK1XqS2VP3hkhbQfl6RyRyjk2SCaYQAsZcXmp NS9oUUq+Y9Vzvj5exYzW8kZNn8AFa2bxeIet4= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=2nvEWeUa8S56mfabvVC7CsMaY7bezGMGHvaj/4h879A=; b=NxDd/UD7xsJcFkhc9KwAL9iwTq7AaWUH2g1EbmBy5NF0HBuv9etn5QDP1MK7LCJFZe uFBgSxspCGwG8n/7uOCMyZy9q1JjtXG9ixQfFCo3fy7tduYIXGQsbGeAL4vUuNmri7Ov TWndmL1smVpbQGYWj4tHiw0ECcgKFJllV8JHf36QFDbYLO9UIxZiYHFlAbUMIf7QdZOk 6dmj2ZaxyStKXOPfx/+DiweUcNB+1SJkvRqBvyoDYZ4fVnhinYV79jtNzQw2G0vPox8y bBMVc8pbQbK+OShHjE+9AHRQgbz+Oz1RjIwdR1sLrsBZ2ZbussPzu9EUuv54o1atpa1G l2AQ== X-Gm-Message-State: AJcUukdlIp3zCycBDhbxELvwxUxVoM4Vzh9D+JJVbLqyEsjSlfdjYuOe JhovM+pEnYp5hr+q9JCRQniMRdvz0W4= X-Google-Smtp-Source: ALg8bN7S215h2xRWrS/E3fPaDAaX35KbjiqqgAXzW8wGAK8ntc/DiriG4lkNk1TrCsgfHy12EBXfdQ== X-Received: by 2002:ac8:3986:: with SMTP id v6mr620173qte.1.1547506070951; Mon, 14 Jan 2019 14:47:50 -0800 (PST) Received: from [192.168.1.190] (pool-108-15-23-247.bltmmd.fios.verizon.net. [108.15.23.247]) by smtp.gmail.com with ESMTPSA id m10sm47322677qtg.39.2019.01.14.14.47.50 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 14 Jan 2019 14:47:50 -0800 (PST) Subject: Re: [PATCH] another trivial To: Russell Coker , "selinux-refpolicy@vger.kernel.org" References: <20190114113515.GA18117@xev> From: Chris PeBenito Message-ID: Date: Mon, 14 Jan 2019 17:44:36 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.3.0 MIME-Version: 1.0 In-Reply-To: <20190114113515.GA18117@xev> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit Sender: selinux-refpolicy-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: selinux-refpolicy@vger.kernel.org On 1/14/19 6:35 AM, Russell Coker wrote: > This adds a hostnamed rule and also corrects an error in a previous patch I > sent (a copy/paste error). I merged the copy-paste error, but the hostnamed one still has a question from the previous patch (subj: "some little stuff") > Index: refpolicy-2.20180701/policy/modules/system/systemd.te > =================================================================== > --- refpolicy-2.20180701.orig/policy/modules/system/systemd.te > +++ refpolicy-2.20180701/policy/modules/system/systemd.te > @@ -347,6 +347,10 @@ optional_policy(` > networkmanager_dbus_chat(systemd_hostnamed_t) > ') > > +optional_policy(` > + unconfined_dbus_send(systemd_hostnamed_t) > +') > + > ######################################### > # > # hw local policy > Index: refpolicy-2.20180701/policy/modules/admin/usermanage.te > =================================================================== > --- refpolicy-2.20180701.orig/policy/modules/admin/usermanage.te > +++ refpolicy-2.20180701/policy/modules/admin/usermanage.te > @@ -550,7 +550,7 @@ optional_policy(` > ') > > optional_policy(` > - apt_use_fds(groupadd_t) > + apt_use_fds(useradd_t) > ') > > optional_policy(` > -- Chris PeBenito