Hello,
Alexis Simon <alexis.simon@runbox.com> writes:
Ok I think I'm starting to get somewhere
those are the changes that were needed in the selinux policy to be
able to start installing a package
==============================================
diff --git a/guix-daemon.cil b/guix-daemon.cil
index 3994e62..c26ed1a 100644
--- a/guix-daemon.cil
+++ b/guix-daemon.cil
@@ -202,7 +202,7 @@
sys_admin)))
(allow guix_daemon_t
fs_t
- (filesystem (unmount)))
+ (filesystem (unmount remount)))
(allow guix_daemon_t
devpts_t
(dir (search)))
@@ -308,6 +308,8 @@
(lnk_file (read)))
(allow guix_daemon_t NetworkManager_var_run_t
(dir (search)))
+ (allow guix_daemon_t init_var_run_t
+ (dir (search)))
;; Access to profiles
(allow guix_daemon_t
=============================================
I'll try it out more and update as I go along.
Sounds good, keep us posted! When you have reached a point you are
satisfied with, please email your patch to guix-patches@gnu.org.