From: Laurent Bigonville <[email protected]>
---
policy/modules/kernel/corecommands.fc | 2 ++
1 file changed, 2 insertions(+)
diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc
index e100be3..acc9ddc 100644
--- a/policy/modules/kernel/corecommands.fc
+++ b/policy/modules/kernel/corecommands.fc
@@ -210,6 +210,8 @@ ifdef(`distro_gentoo',`
/usr/lib/dpkg/.+ -- gen_context(system_u:object_r:bin_t,s0)
/usr/lib/emacsen-common/.* gen_context(system_u:object_r:bin_t,s0)
/usr/lib/gimp/.*/plug-ins(/.*)? gen_context(system_u:object_r:bin_t,s0)
+/usr/lib/git-core/git-shell -- gen_context(system_u:object_r:shell_exec_t,s0)
+/usr/lib/git-core(/.*) -- gen_context(system_u:object_r:bin_t,s0)
/usr/lib/gnome-settings-daemon/.* -- gen_context(system_u:object_r:bin_t,s0)
/usr/lib/gvfs/.* -- gen_context(system_u:object_r:bin_t,s0)
/usr/lib/ipsec/.* -- gen_context(system_u:object_r:bin_t,s0)
--
1.9.0
From: Laurent Bigonville <[email protected]>
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=739163
---
policy/modules/services/xserver.fc | 1 +
1 file changed, 1 insertion(+)
diff --git a/policy/modules/services/xserver.fc b/policy/modules/services/xserver.fc
index 8274418..e130718 100644
--- a/policy/modules/services/xserver.fc
+++ b/policy/modules/services/xserver.fc
@@ -66,6 +66,7 @@ HOME_DIR/\.Xauthority.* -- gen_context(system_u:object_r:xauth_home_t,s0)
/usr/bin/Xair -- gen_context(system_u:object_r:xserver_exec_t,s0)
/usr/bin/xauth -- gen_context(system_u:object_r:xauth_exec_t,s0)
/usr/bin/Xorg -- gen_context(system_u:object_r:xserver_exec_t,s0)
+/usr/sbin/lightdm -- gen_context(system_u:object_r:xdm_exec_t,s0)
/usr/lib/qt-.*/etc/settings(/.*)? gen_context(system_u:object_r:xdm_var_run_t,s0)
--
1.9.0
Ping?
Le Mon, 3 Mar 2014 23:59:24 +0100,
Laurent Bigonville <[email protected]> a ?crit :
> From: Laurent Bigonville <[email protected]>
>
> ---
> policy/modules/kernel/corecommands.fc | 2 ++
> 1 file changed, 2 insertions(+)
>
> diff --git a/policy/modules/kernel/corecommands.fc
> b/policy/modules/kernel/corecommands.fc index e100be3..acc9ddc 100644
> --- a/policy/modules/kernel/corecommands.fc
> +++ b/policy/modules/kernel/corecommands.fc
> @@ -210,6 +210,8 @@ ifdef(`distro_gentoo',`
> /usr/lib/dpkg/.+ --
> gen_context(system_u:object_r:bin_t,s0) /usr/lib/emacsen-common/.*
> gen_context(system_u:object_r:bin_t,s0) /usr/lib/gimp/.*/plug-ins(/.*)?
> gen_context(system_u:object_r:bin_t,s0)
> +/usr/lib/git-core/git-shell --
> gen_context(system_u:object_r:shell_exec_t,s0)
> +/usr/lib/git-core(/.*) --
> gen_context(system_u:object_r:bin_t,s0) /usr/lib/gnome-settings-daemon/.*
> --
> gen_context(system_u:object_r:bin_t,s0) /usr/lib/gvfs/.* --
> gen_context(system_u:object_r:bin_t,s0) /usr/lib/ipsec/.* --
> gen_context(system_u:object_r:bin_t,s0)
On 03/14/2014 09:35 AM, Laurent Bigonville wrote:
> Ping?
This set is merged.
> Le Mon, 3 Mar 2014 23:59:24 +0100,
> Laurent Bigonville <[email protected]> a ?crit :
>
>> From: Laurent Bigonville <[email protected]>
>>
>> ---
>> policy/modules/kernel/corecommands.fc | 2 ++
>> 1 file changed, 2 insertions(+)
>>
>> diff --git a/policy/modules/kernel/corecommands.fc
>> b/policy/modules/kernel/corecommands.fc index e100be3..acc9ddc 100644
>> --- a/policy/modules/kernel/corecommands.fc
>> +++ b/policy/modules/kernel/corecommands.fc
>> @@ -210,6 +210,8 @@ ifdef(`distro_gentoo',`
>> /usr/lib/dpkg/.+ --
>> gen_context(system_u:object_r:bin_t,s0) /usr/lib/emacsen-common/.*
>> gen_context(system_u:object_r:bin_t,s0) /usr/lib/gimp/.*/plug-ins(/.*)?
>> gen_context(system_u:object_r:bin_t,s0)
>> +/usr/lib/git-core/git-shell --
>> gen_context(system_u:object_r:shell_exec_t,s0)
>> +/usr/lib/git-core(/.*) --
>> gen_context(system_u:object_r:bin_t,s0) /usr/lib/gnome-settings-daemon/.*
>> --
>> gen_context(system_u:object_r:bin_t,s0) /usr/lib/gvfs/.* --
>> gen_context(system_u:object_r:bin_t,s0) /usr/lib/ipsec/.* --
>> gen_context(system_u:object_r:bin_t,s0)
>
> _______________________________________________
> refpolicy mailing list
> refpolicy at oss.tresys.com
> http://oss.tresys.com/mailman/listinfo/refpolicy
>
--
Chris PeBenito
Tresys Technology, LLC
http://www.tresys.com | oss.tresys.com