LinuxLists.cc - [refpolicy] [PATCH] another bootloader patch

2017-04-17 12:39:55

Subject: [refpolicy] [PATCH] another bootloader patch

I forgot this one on the previous patch.

--- refpolicy-2.20170417.orig/policy/modules/admin/bootloader.fc
+++ refpolicy-2.20170417/policy/modules/admin/bootloader.fc
@@ -9,3 +9,4 @@
/usr/sbin/grub2?-probe -- gen_context(system_u:object_r:bootloader_exec_t,s0)
/usr/sbin/lilo.* -- gen_context(system_u:object_r:bootloader_exec_t,s0)
/usr/sbin/ybin.* -- gen_context(system_u:object_r:bootloader_exec_t,s0)
+/var/lib/os-prober(/.*)? gen_context(system_u:object_r:bootloader_tmp_t,s0)

2017-04-19 01:30:42

by Chris PeBenito

[permalink] [raw]

Subject: [refpolicy] [PATCH] another bootloader patch

On 04/17/2017 08:39 AM, Russell Coker via refpolicy wrote:
> I forgot this one on the previous patch.
>
> --- refpolicy-2.20170417.orig/policy/modules/admin/bootloader.fc
> +++ refpolicy-2.20170417/policy/modules/admin/bootloader.fc
> @@ -9,3 +9,4 @@
> /usr/sbin/grub2?-probe -- gen_context(system_u:object_r:bootloader_exec_t,s0)
> /usr/sbin/lilo.* -- gen_context(system_u:object_r:bootloader_exec_t,s0)
> /usr/sbin/ybin.* -- gen_context(system_u:object_r:bootloader_exec_t,s0)
> +/var/lib/os-prober(/.*)? gen_context(system_u:object_r:bootloader_tmp_t,s0)

Merged.

--
Chris PeBenito