From: russell@coker.com.au (Russell Coker)
Date: Sun, 31 Jul 2016 12:55:41 +1000
Subject: [refpolicy] [PATCH] Systemd by version 231 starts using
	shared	library and systemd daemons execute it. For this
	reason lib_t	type is needed.
In-Reply-To: <1469923074-7498-1-git-send-email-lvrabec@redhat.com>
References: <1469923074-7498-1-git-send-email-lvrabec@redhat.com>
Message-ID: <5B451C0C-3171-4A5C-8E3A-64803CB1386F@coker.com.au>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

231 is the version number. Needs a numeric regex so the next version doesn't break.

On 31 July 2016 9:57:54 AM AEST, Lukas Vrabec <lvrabec@redhat.com> wrote:
>---
> policy/modules/system/libraries.fc | 2 ++
> 1 file changed, 2 insertions(+)
>
>diff --git a/policy/modules/system/libraries.fc
>b/policy/modules/system/libraries.fc
>index b532946..c4971ab 100644
>--- a/policy/modules/system/libraries.fc
>+++ b/policy/modules/system/libraries.fc
>@@ -148,6 +148,8 @@ ifdef(`distro_debian',`
>/usr/lib/nvidia/libGL(core)?\.so(\.[^/]*)*
>--	gen_context(system_u:object_r:textrel_shlib_t,s0)
>/usr/lib/xorg/modules/glesx\.so(\.[^/]*)*
>--	gen_context(system_u:object_r:textrel_shlib_t,s0)
> 
>+/usr/lib/systemd/libsystemd-shared-231\.so.*   --     
>gen_context(system_u:object_r:lib_t,s0)
>+
>/usr/(local/)?.*\.so(\.[^/]*)*		--	gen_context(system_u:object_r:lib_t,s0)
>/usr/(local/)?lib(64)?/wine/.+\.so	--	gen_context(system_u:object_r:textrel_shlib_t,s0)
>/usr/(local/)?lib(64)?/(sse2/)?libfame-.*\.so.*	--	gen_context(system_u:object_r:textrel_shlib_t,s0)

-- 
Sent from my Nexus 6P with K-9 Mail.