nnd/selinux-refpolicy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

init: Add systemd block to init_script_domain().

Browse Source 
Signed-off-by: Chris PeBenito <Christopher.PeBenito@microsoft.com>
This commit is contained in:
Chris PeBenito 2019-05-28 11:13:32 -04:00
parent 3a6b7c1856
commit 4aafedd872
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
policy/modules/system/init.if
View File

@ -99,6 +99,12 @@ interface(`init_script_domain',`
role system_r types $1;
domtrans_pattern(init_run_all_scripts_domain, $2, $1)
ifdef(`init_systemd',`
allow $1 init_t:unix_stream_socket { getattr read write ioctl };
allow init_t $1:process2 { nnp_transition nosuid_transition };
')
')
########################################