From: Laurent Bigonville <[email protected]>
During the opening of the session, the pam_gnome_keyring module is
starting the daemon in the gkeyringd user domain, allow xdm_t to
transition to it.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742966
---
policy/modules/services/xserver.te | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/policy/modules/services/xserver.te b/policy/modules/services/xserver.te
index 8479a52..a86f701 100644
--- a/policy/modules/services/xserver.te
+++ b/policy/modules/services/xserver.te
@@ -524,6 +524,10 @@ optional_policy(`
')
optional_policy(`
+ gnome_spec_domtrans_all_gkeyringd(xdm_t)
+')
+
+optional_policy(`
# Talk to the console mouse server.
gpm_stream_connect(xdm_t)
gpm_setattr_gpmctl(xdm_t)
--
1.9.2
On 04/11/2014 01:28 PM, Laurent Bigonville wrote:
> From: Laurent Bigonville <[email protected]>
>
> During the opening of the session, the pam_gnome_keyring module is
> starting the daemon in the gkeyringd user domain, allow xdm_t to
> transition to it.
>
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742966
> ---
> policy/modules/services/xserver.te | 4 ++++
> 1 file changed, 4 insertions(+)
>
> diff --git a/policy/modules/services/xserver.te b/policy/modules/services/xserver.te
> index 8479a52..a86f701 100644
> --- a/policy/modules/services/xserver.te
> +++ b/policy/modules/services/xserver.te
> @@ -524,6 +524,10 @@ optional_policy(`
> ')
>
> optional_policy(`
> + gnome_spec_domtrans_all_gkeyringd(xdm_t)
> +')
> +
> +optional_policy(`
> # Talk to the console mouse server.
> gpm_stream_connect(xdm_t)
> gpm_setattr_gpmctl(xdm_t)
Merged.
--
Chris PeBenito
Tresys Technology, LLC
http://www.tresys.com | oss.tresys.com