RepoMirrors
/
selinux-refpolicy
mirror of https://github.com/SELinuxProject/refpolicy
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #487 from jpds/userdb-lnk-read 

systemd.if: Allowed reading symlinks in systemd_stream_connect_userdb()
This commit is contained in:
Chris PeBenito 2022-03-25 12:39:34 -04:00 committed by GitHub
parent eaccf044f3 5f49d2b692
commit 42e57f4d1e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
policy/modules/system/systemd.if
View File

@ -1250,6 +1250,7 @@ interface(`systemd_stream_connect_userdb', `
init_search_runtime($1)
allow $1 systemd_userdbd_runtime_t:dir list_dir_perms;
allow $1 systemd_userdbd_runtime_t:lnk_file read_lnk_file_perms;
stream_connect_pattern($1, systemd_userdbd_runtime_t, systemd_userdbd_runtime_t, systemd_userdbd_t)
init_unix_stream_socket_connectto($1)
')