[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
03/07: etc: SELinux: Allow init process to setattr on profile directorie
|
From: |
guix-commits |
|
Subject: |
03/07: etc: SELinux: Allow init process to setattr on profile directories. |
|
Date: |
Fri, 23 Dec 2022 14:22:37 -0500 (EST) |
rekado pushed a commit to branch master
in repository guix.
commit afaeb657b118e6998342110deab8c8110b824417
Author: Ricardo Wurmus <rekado@elephly.net>
AuthorDate: Fri Dec 23 16:48:20 2022 +0100
etc: SELinux: Allow init process to setattr on profile directories.
* etc/guix-daemon.cil.in: Add rule.
---
etc/guix-daemon.cil.in | 3 +++
1 file changed, 3 insertions(+)
diff --git a/etc/guix-daemon.cil.in b/etc/guix-daemon.cil.in
index 0245c36231..f55ef226c1 100644
--- a/etc/guix-daemon.cil.in
+++ b/etc/guix-daemon.cil.in
@@ -94,6 +94,9 @@
(allow init_t
guix_store_content_t
(file (open read execute)))
+ (allow init_t
+ guix_profiles_t
+ (dir (setattr)))
;; guix-daemon needs to know the names of users
(allow guix_daemon_t
- branch master updated (ef060487a2 -> b6d9e266a7), guix-commits, 2022/12/23
- 01/07: etc: SELinux: Label guix-daemon executable in profile., guix-commits, 2022/12/23
- 02/07: etc: SELinux: Allow daemon to search run state directories., guix-commits, 2022/12/23
- 03/07: etc: SELinux: Allow init process to setattr on profile directories.,
guix-commits <=
- 04/07: doc: Suggest remounting store before relabeling the file system., guix-commits, 2022/12/23
- 05/07: doc: Wrap $localstatedir in Texinfo syntax., guix-commits, 2022/12/23
- 06/07: gnu: Add apache-arrow-for-ceph., guix-commits, 2022/12/23
- 07/07: gnu: ceph: Update to 17.2.5., guix-commits, 2022/12/23