nnd/selinux-refpolicy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

systemd: allow systemd-hostnamed to read selinux configuration files

Browse Source 
Fixes:
systemd[1]: Starting Hostname Service...
systemd-hostnamed[395]: Failed to initialize SELinux labeling handle: No such file or directory
systemd[1]: systemd-hostnamed.service: Main process exited, code=exited, status=1/FAILURE
systemd[1]: systemd-hostnamed.service: Failed with result 'exit-code'.
systemd[1]: Failed to start Hostname Service.

avc:  denied  { read } for  pid=341 comm="systemd-hostnam" name="config"
dev="vda" ino=345 scontext=system_u:system_r:systemd_hostnamed_t:s0
tcontext=system_u:object_r:selinux_config_t:s0 tclass=file permissive=0

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
This commit is contained in:
Yi Zhao 2022-11-01 10:27:50 +08:00
parent d4b19952c2
commit 72399fc077
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
policy/modules/system/systemd.te
View File

@ -702,6 +702,7 @@ fs_getattr_all_fs(systemd_hostnamed_t)
selinux_use_status_page(systemd_hostnamed_t)
seutil_read_config(systemd_hostnamed_t)
seutil_read_file_contexts(systemd_hostnamed_t)
sysnet_etc_filetrans_config(systemd_hostnamed_t)