diff options
| author |   Nicolas Iooss <nicolas.iooss@m4x.org> | 2017-09-06 22:44:17 +0200 |
|---|---|---|
| committer |   Luis Ressel <aranea@aixah.de> | 2017-09-09 00:39:50 +0200 |
| commit | 549b6dbb3f5ae4e0645aa0bbc657187776c4f305 (patch) | |
| tree | cc04ba9431c3ca28094c592e8fbdc401502dc3b0 | |
| parent | systemd: Whitespace fix. (diff) | |
| download | hardened-refpolicy-549b6dbb.tar.gz hardened-refpolicy-549b6dbb.tar.bz2 hardened-refpolicy-549b6dbb.zip | |
corecommands: label Arch Linux pacman's scripts as bin_t
On Arch Linux, the package manager uses hooks which execute scripts in
/usr/share/libalpm/scripts.
| -rw-r--r-- | policy/modules/kernel/corecommands.fc | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/policy/modules/kernel/corecommands.fc b/policy/modules/kernel/corecommands.fc index 1b556308..37760a87 100644 --- a/policy/modules/kernel/corecommands.fc +++ b/policy/modules/kernel/corecommands.fc @@ -310,6 +310,7 @@ ifdef(`distro_gentoo',` /usr/share/GNUstep/Makefiles/mkinstalldirs -- gen_context(system_u:object_r:bin_t,s0) /usr/share/hal/device-manager/hal-device-manager -- gen_context(system_u:object_r:bin_t,s0) /usr/share/hal/scripts(/.*)? gen_context(system_u:object_r:bin_t,s0) +/usr/share/libalpm/scripts(/.*)? gen_context(system_u:object_r:bin_t,s0) /usr/share/mc/extfs/.* -- gen_context(system_u:object_r:bin_t,s0) /usr/share/Modules/init(/.*)? gen_context(system_u:object_r:bin_t,s0) /usr/share/org.gnome.Weather/org\.gnome\.Weather\.Application -- gen_context(system_u:object_r:bin_t,s0) |