/etc/sysconfig/libvirtd does not have the executable bit set, so it does
not make sense for it to be labelled bin_t. I can't seem to find the
reason it was set that way originally.
Signed-off-by: Garrett Holmstrom <[email protected]>
---
policy/modules/kernel/corecommands.fc | 1 -
1 file changed, 1 deletion(-)
diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc
index e559a40..e96d9c7 100644
--- a/policy/modules/kernel/corecommands.fc
+++ b/policy/modules/kernel/corecommands.fc
@@ -105,7 +105,6 @@ ifdef(`distro_redhat',`
/etc/sysconfig/crond -- gen_context(system_u:object_r:bin_t,s0)
/etc/sysconfig/init -- gen_context(system_u:object_r:bin_t,s0)
-/etc/sysconfig/libvirtd -- gen_context(system_u:object_r:bin_t,s0)
/etc/sysconfig/netconsole -- gen_context(system_u:object_r:bin_t,s0)
/etc/sysconfig/readonly-root -- gen_context(system_u:object_r:bin_t,s0)
--
1.8.3.1
On 06/29/16 19:27, Garrett Holmstrom wrote:
> /etc/sysconfig/libvirtd does not have the executable bit set, so it does
> not make sense for it to be labelled bin_t. I can't seem to find the
> reason it was set that way originally.
>
> Signed-off-by: Garrett Holmstrom <[email protected]>
> ---
> policy/modules/kernel/corecommands.fc | 1 -
> 1 file changed, 1 deletion(-)
>
> diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc
> index e559a40..e96d9c7 100644
> --- a/policy/modules/kernel/corecommands.fc
> +++ b/policy/modules/kernel/corecommands.fc
> @@ -105,7 +105,6 @@ ifdef(`distro_redhat',`
>
> /etc/sysconfig/crond -- gen_context(system_u:object_r:bin_t,s0)
> /etc/sysconfig/init -- gen_context(system_u:object_r:bin_t,s0)
> -/etc/sysconfig/libvirtd -- gen_context(system_u:object_r:bin_t,s0)
> /etc/sysconfig/netconsole -- gen_context(system_u:object_r:bin_t,s0)
> /etc/sysconfig/readonly-root -- gen_context(system_u:object_r:bin_t,s0)
Merged.
--
Chris PeBenito