From: cpebenito@tresys.com (Christopher J. PeBenito) Date: Wed, 15 Aug 2012 11:47:36 -0400 Subject: [refpolicy] [PATCH v3 2/2] Update with new substitutions In-Reply-To: <20120810144017.GC7985@siphos.be> References: <20120810143907.GA7985@siphos.be> <20120810144017.GC7985@siphos.be> Message-ID: <502BC498.4080707@tresys.com> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com On 08/10/12 10:40, Sven Vermeulen wrote: > The recently introduced substitutions for /usr/local/lib* and /etc/init.d also > reflect in the file contexts of a few contrib modules. Merged. > Signed-off-by: Sven Vermeulen > --- > hadoop.fc | 8 +------- > inetd.fc | 2 +- > tmpreaper.fc | 4 ++-- > 3 files changed, 4 insertions(+), 10 deletions(-) > > diff --git a/hadoop.fc b/hadoop.fc > index 633c470..2d0f90a 100644 > --- a/hadoop.fc > +++ b/hadoop.fc > @@ -1,18 +1,12 @@ > /etc/hadoop.* gen_context(system_u:object_r:hadoop_etc_t,s0) > > -/etc/init\.d/hadoop-(.*-)?datanode -- gen_context(system_u:object_r:hadoop_datanode_initrc_exec_t,s0) > -/etc/init\.d/hadoop-(.*-)?jobtracker -- gen_context(system_u:object_r:hadoop_jobtracker_initrc_exec_t,s0) > -/etc/init\.d/hadoop-(.*-)?namenode -- gen_context(system_u:object_r:hadoop_namenode_initrc_exec_t,s0) > -/etc/init\.d/hadoop-(.*-)?secondarynamenode -- gen_context(system_u:object_r:hadoop_secondarynamenode_initrc_exec_t,s0) > -/etc/init\.d/hadoop-(.*-)?tasktracker -- gen_context(system_u:object_r:hadoop_tasktracker_initrc_exec_t,s0) > -/etc/init\.d/zookeeper -- gen_context(system_u:object_r:zookeeper_server_initrc_exec_t,s0) > - > /etc/rc\.d/init\.d/hadoop-(.*-)?datanode -- gen_context(system_u:object_r:hadoop_datanode_initrc_exec_t,s0) > /etc/rc\.d/init\.d/hadoop-(.*-)?jobtracker -- gen_context(system_u:object_r:hadoop_jobtracker_initrc_exec_t,s0) > /etc/rc\.d/init\.d/hadoop-(.*-)?namenode -- gen_context(system_u:object_r:hadoop_namenode_initrc_exec_t,s0) > /etc/rc\.d/init\.d/hadoop-(.*-)?secondarynamenode -- gen_context(system_u:object_r:hadoop_secondarynamenode_initrc_exec_t,s0) > /etc/rc\.d/init\.d/hadoop-(.*-)?tasktracker -- gen_context(system_u:object_r:hadoop_tasktracker_initrc_exec_t,s0) > /etc/rc\.d/init\.d/hadoop-zookeeper -- gen_context(system_u:object_r:zookeeper_server_initrc_exec_t,s0) > +/etc/rc\.d/init\.d/zookeeper -- gen_context(system_u:object_r:zookeeper_server_initrc_exec_t,s0) > > /etc/zookeeper(/.*)? gen_context(system_u:object_r:zookeeper_etc_t,s0) > /etc/zookeeper\.dist(/.*)? gen_context(system_u:object_r:zookeeper_etc_t,s0) > diff --git a/inetd.fc b/inetd.fc > index 39d5baa..6107467 100644 > --- a/inetd.fc > +++ b/inetd.fc > @@ -1,7 +1,7 @@ > +/usr/lib/pysieved/pysieved.*\.py -- gen_context(system_u:object_r:inetd_child_exec_t,s0) > > /usr/sbin/identd -- gen_context(system_u:object_r:inetd_child_exec_t,s0) > /usr/sbin/in\..*d -- gen_context(system_u:object_r:inetd_child_exec_t,s0) > -/usr/local/lib/pysieved/pysieved.*\.py -- gen_context(system_u:object_r:inetd_child_exec_t,s0) > > /usr/sbin/inetd -- gen_context(system_u:object_r:inetd_exec_t,s0) > /usr/sbin/rlinetd -- gen_context(system_u:object_r:inetd_exec_t,s0) > diff --git a/tmpreaper.fc b/tmpreaper.fc > index fcc10e8..42ee122 100644 > --- a/tmpreaper.fc > +++ b/tmpreaper.fc > @@ -1,6 +1,6 @@ > ifdef(`distro_debian',` > -/etc/init\.d/mountall-bootclean.sh -- gen_context(system_u:object_r:tmpreaper_exec_t,s0) > -/etc/init\.d/mountnfs-bootclean.sh -- gen_context(system_u:object_r:tmpreaper_exec_t,s0) > +/etc/rc\.d/init\.d/mountall-bootclean.sh -- gen_context(system_u:object_r:tmpreaper_exec_t,s0) > +/etc/rc\.d/init\.d/mountnfs-bootclean.sh -- gen_context(system_u:object_r:tmpreaper_exec_t,s0) > ') > > /usr/sbin/tmpreaper -- gen_context(system_u:object_r:tmpreaper_exec_t,s0) > -- Chris PeBenito Tresys Technology, LLC www.tresys.com | oss.tresys.com