packages/selinux-policy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
selinux-policy/backport-Allow-initrc_t-create-run-chronyd-dhcp-directory-wit.patch
luhuaxin 67a202caa4 backport some upstream patches
2021-05-31 18:58:06 +08:00

36 lines
987 B
Diff
Raw Blame History

From bad3809a314f6e6d1199e2201eb0c4fefbc8766a Mon Sep 17 00:00:00 2001
From: Zdenek Pytela <zpytela@redhat.com>
Date: Wed, 14 Oct 2020 22:45:29 +0200
Reference: https://github.com/fedora-selinux/selinux-policy/commit/bad3809a314f6e6d1199e2201eb0c4fefbc8766a
Conflict: NA
Subject: [PATCH] Allow initrc_t create /run/chronyd-dhcp directory with a
transition
Chronyd is required to read preferred sources files stored in
/run/chronyd-dhcp to be able to get correct time settings
from the dhcp server and have them applied.
Resolves: rhbz#1880948
---
policy/modules/system/init.te | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te
index 50b655b..f72a8ef 100644
--- a/policy/modules/system/init.te
+++ b/policy/modules/system/init.te
@@ -1210,6 +1210,10 @@ ifdef(`distro_redhat',`
')
optional_policy(`
+ chronyd_pid_filetrans(initrc_t)
+ ')
+
+ optional_policy(`
cyrus_write_data(initrc_t)
')
--
1.8.3.1
Reference in New Issue View Git Blame Copy Permalink