From: pebenito@ieee.org (Chris PeBenito) Date: Tue, 18 Apr 2017 21:30:42 -0400 Subject: [refpolicy] [PATCH] another bootloader patch In-Reply-To: <20170417123955.pmlse652lxs2s2qn@athena.coker.com.au> References: <20170417123955.pmlse652lxs2s2qn@athena.coker.com.au> Message-ID: <57b8e239-d145-d4ed-4f5d-bb5055927451@ieee.org> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com On 04/17/2017 08:39 AM, Russell Coker via refpolicy wrote: > I forgot this one on the previous patch. > > --- refpolicy-2.20170417.orig/policy/modules/admin/bootloader.fc > +++ refpolicy-2.20170417/policy/modules/admin/bootloader.fc > @@ -9,3 +9,4 @@ > /usr/sbin/grub2?-probe -- gen_context(system_u:object_r:bootloader_exec_t,s0) > /usr/sbin/lilo.* -- gen_context(system_u:object_r:bootloader_exec_t,s0) > /usr/sbin/ybin.* -- gen_context(system_u:object_r:bootloader_exec_t,s0) > +/var/lib/os-prober(/.*)? gen_context(system_u:object_r:bootloader_tmp_t,s0) Merged. -- Chris PeBenito