base: use new genhomedircon template for username

Use the new genhomedircon templates for username-dependant file contexts (requires libsemanage >= 2.6). This is the base policy part (1/2).
author: Guido Trentalancia <guido@trentalancia.net> 2016-12-27 10:33:57 -0500
committer: Jason Zaman <jason@perfinion.com> 2017-01-02 00:26:28 +0800
commit: 989ddb737f2e045e534d3238a9ed8248faf55c83 (patch)
tree: f8b72caf3d06cc8080aaf5ca09aff32478fe909a
parent: modutils: update to run in confined mode (diff)
download: hardened-refpolicy-989ddb737f2e045e534d3238a9ed8248faf55c83.tar.gz
hardened-refpolicy-989ddb737f2e045e534d3238a9ed8248faf55c83.tar.bz2
hardened-refpolicy-989ddb737f2e045e534d3238a9ed8248faf55c83.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/policy/modules/system/userdomain.fc b/policy/modules/system/userdomain.fc
index c8b881ea..6c813b45 100644
--- a/policy/modules/system/userdomain.fc
+++ b/policy/modules/system/userdomain.fc
@@ -2,7 +2,7 @@ HOME_DIR	-d	gen_context(system_u:object_r:user_home_dir_t,s0-mls_systemhigh)
 HOME_DIR/.+		gen_context(system_u:object_r:user_home_t,s0)
 HOME_DIR/\.pki(/.*)?	gen_context(system_u:object_r:user_cert_t,s0)
 
-/tmp/gconfd-USER -d	gen_context(system_u:object_r:user_tmp_t,s0)
+/tmp/gconfd-%{USERNAME} -d	gen_context(system_u:object_r:user_tmp_t,s0)
 
 /run/user		-d	gen_context(system_u:object_r:user_runtime_root_t,s0)
 /run/user/[^/]+	-d	gen_context(system_u:object_r:user_runtime_t,s0)
author	Guido Trentalancia <guido@trentalancia.net>	2016-12-27 10:33:57 -0500
committer	Jason Zaman <jason@perfinion.com>	2017-01-02 00:26:28 +0800
commit	989ddb737f2e045e534d3238a9ed8248faf55c83 (patch)
tree	f8b72caf3d06cc8080aaf5ca09aff32478fe909a
parent	modutils: update to run in confined mode (diff)
download	hardened-refpolicy-989ddb737f2e045e534d3238a9ed8248faf55c83.tar.gz hardened-refpolicy-989ddb737f2e045e534d3238a9ed8248faf55c83.tar.bz2 hardened-refpolicy-989ddb737f2e045e534d3238a9ed8248faf55c83.zip