39 lines
1.1 KiB
Diff
39 lines
1.1 KiB
Diff
From 284df66be2e1432333b8134606b30fd76c877123 Mon Sep 17 00:00:00 2001
|
|
From: Milos Malik <mmalik@redhat.com>
|
|
Date: Wed, 7 Sep 2022 09:57:13 +0200
|
|
Subject: [PATCH] blueman-mechanism can read ~/.local/lib/python*/site-packages
|
|
directory
|
|
|
|
If the ~/.local/lib/python*/site-packages/ directory exists in root's
|
|
home directory then the blueman-mechanism service tries to read that
|
|
directory during its start.
|
|
|
|
The blueman-mechanism program is written in Python and I believe that
|
|
Python is trying to find locally installed python modules.
|
|
|
|
In order to avoid these SELinux denials, SELinux policy should allow
|
|
the access.
|
|
|
|
Resolves: BZ#2027044
|
|
Signed-off-by: lujie42 <lujie54@huawei.com>
|
|
---
|
|
policy/modules/contrib/blueman.te | 2 +-
|
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
|
diff --git a/policy/modules/contrib/blueman.te b/policy/modules/contrib/blueman.te
|
|
index 4389ad441..305c5270c 100644
|
|
--- a/policy/modules/contrib/blueman.te
|
|
+++ b/policy/modules/contrib/blueman.te
|
|
@@ -93,7 +93,7 @@ optional_policy(`
|
|
')
|
|
|
|
optional_policy(`
|
|
- gnome_search_gconf(blueman_t)
|
|
+ gnome_search_gconf_data_dir(blueman_t)
|
|
')
|
|
|
|
optional_policy(`
|
|
--
|
|
2.27.0
|
|
|