From: russell@coker.com.au (Russell Coker) Date: Mon, 17 Apr 2017 22:39:55 +1000 Subject: [refpolicy] [PATCH] another bootloader patch Message-ID: <20170417123955.pmlse652lxs2s2qn@athena.coker.com.au> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com I forgot this one on the previous patch. --- refpolicy-2.20170417.orig/policy/modules/admin/bootloader.fc +++ refpolicy-2.20170417/policy/modules/admin/bootloader.fc @@ -9,3 +9,4 @@ /usr/sbin/grub2?-probe -- gen_context(system_u:object_r:bootloader_exec_t,s0) /usr/sbin/lilo.* -- gen_context(system_u:object_r:bootloader_exec_t,s0) /usr/sbin/ybin.* -- gen_context(system_u:object_r:bootloader_exec_t,s0) +/var/lib/os-prober(/.*)? gen_context(system_u:object_r:bootloader_tmp_t,s0)