RepoMirrors
/
selinux-refpolicy
mirror of https://github.com/SELinuxProject/refpolicy
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
selinux-refpolicy/policy/modules
History
Krzysztof Nowicki 900a51f134 Allow systemd-tmpfilesd to relabel generic files inside /etc 
Enable this only with the systemd_tmpfilesd_factory tunable, otherwise
silence the messages with a dontaudit rule.

Fixes:

avc:  denied  { relabelfrom } for comm="systemd-tmpfile"
name="pam.d" dev= ino=
scontext=system_u:system_r:systemd_tmpfiles_t:s0
tcontext=system_u:object_r:etc_t:s0 tclass=dir

Signed-off-by: Krzysztof Nowicki <krissn@op.pl>
 		2021-02-09 13:52:01 +01:00
..
admin Bump module versions for release. 2021-02-03 08:38:26 -05:00
apps Bump module versions for release. 2021-02-03 08:38:26 -05:00
kernel Allow systemd-tmpfilesd to relabel generic files inside /etc 2021-02-09 13:52:01 +01:00
roles Bump module versions for release. 2021-02-03 08:38:26 -05:00
services Allow systemd-tmpfilesd populating of /var/lib/dbus 2021-02-09 13:24:52 +01:00
system Allow systemd-tmpfilesd to relabel generic files inside /etc 2021-02-09 13:52:01 +01:00