rpmbuild_t is not a system domain. also mark it as most likely dead.
This commit is contained in:
parent
c6fd1f85ba
commit
16e9b0cb6b
|
@ -46,8 +46,10 @@ type rpm_script_tmpfs_t;
|
||||||
files_make_tmpfs_file(rpm_script_tmpfs_t)
|
files_make_tmpfs_file(rpm_script_tmpfs_t)
|
||||||
|
|
||||||
type rpmbuild_t;
|
type rpmbuild_t;
|
||||||
|
domain_make_domain(rpmbuild_t)
|
||||||
|
|
||||||
type rpmbuild_exec_t;
|
type rpmbuild_exec_t;
|
||||||
init_make_system_domain(rpmbuild_t,rpmbuild_exec_t)
|
domain_make_entrypoint_file(rpmbuild_t,rpmbuild_exec_t)
|
||||||
|
|
||||||
########################################
|
########################################
|
||||||
#
|
#
|
||||||
|
@ -345,6 +347,10 @@ allow sshd_t rpm_script_t:fd use;
|
||||||
# rpm-build Local policy
|
# rpm-build Local policy
|
||||||
#
|
#
|
||||||
|
|
||||||
|
# cjp: this looks like dead policy. nothing
|
||||||
|
# can transition to this domain, nor can it
|
||||||
|
# really do anything useful.
|
||||||
|
|
||||||
kernel_get_selinuxfs_mount_point(rpmbuild_t)
|
kernel_get_selinuxfs_mount_point(rpmbuild_t)
|
||||||
kernel_validate_selinux_context(rpmbuild_t)
|
kernel_validate_selinux_context(rpmbuild_t)
|
||||||
kernel_compute_selinux_access_vector(rpmbuild_t)
|
kernel_compute_selinux_access_vector(rpmbuild_t)
|
||||||
|
|
Loading…
Reference in New Issue