[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
01/07: etc: SELinux: Label guix-daemon executable in profile.
From: |
guix-commits |
Subject: |
01/07: etc: SELinux: Label guix-daemon executable in profile. |
Date: |
Fri, 23 Dec 2022 14:22:36 -0500 (EST) |
rekado pushed a commit to branch master
in repository guix.
commit f28d792719abb82cc920486e6d6f14eacc44370c
Author: Ricardo Wurmus <rekado@elephly.net>
AuthorDate: Fri Dec 23 16:44:58 2022 +0100
etc: SELinux: Label guix-daemon executable in profile.
* etc/guix-daemon.cil.in: Add file rule for "guix-daemon" in current-guix
profile.
---
etc/guix-daemon.cil.in | 2 ++
1 file changed, 2 insertions(+)
diff --git a/etc/guix-daemon.cil.in b/etc/guix-daemon.cil.in
index f4767ff666..ba100a4535 100644
--- a/etc/guix-daemon.cil.in
+++ b/etc/guix-daemon.cil.in
@@ -447,6 +447,8 @@
any (unconfined_u object_r guix_store_content_t (low low)))
(filecon "@prefix@/bin/guix-daemon"
file (system_u object_r guix_daemon_exec_t (low low)))
+ (filecon
"@guix_localstatedir@/guix/profiles/per-user/[^/]+/current-guix/bin/guix-daemon"
+ file (system_u object_r guix_daemon_exec_t (low low)))
(filecon "@storedir@/.+-(guix-.+|profile)/bin/guix-daemon"
file (system_u object_r guix_daemon_exec_t (low low)))
(filecon "@storedir@/[a-z0-9]+-guix-daemon"
- branch master updated (ef060487a2 -> b6d9e266a7), guix-commits, 2022/12/23
- 01/07: etc: SELinux: Label guix-daemon executable in profile.,
guix-commits <=
- 02/07: etc: SELinux: Allow daemon to search run state directories., guix-commits, 2022/12/23
- 03/07: etc: SELinux: Allow init process to setattr on profile directories., guix-commits, 2022/12/23
- 04/07: doc: Suggest remounting store before relabeling the file system., guix-commits, 2022/12/23
- 05/07: doc: Wrap $localstatedir in Texinfo syntax., guix-commits, 2022/12/23
- 06/07: gnu: Add apache-arrow-for-ceph., guix-commits, 2022/12/23
- 07/07: gnu: ceph: Update to 17.2.5., guix-commits, 2022/12/23