packages/selinux-policy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
selinux-policy/Fix-userdom_write_user_tmp_dirs-to-allow-caller-doma.patch
overweight fcfd975340 Package init
2019-09-30 11:16:49 -04:00

27 lines
805 B
Diff
Raw Blame History

From debf07213f1c423a3a6504dd027792b14426f07e Mon Sep 17 00:00:00 2001
From: Lukas Vrabec <lvrabec@redhat.com>
Date: Wed, 17 Oct 2018 13:24:41 +0200
Subject: [PATCH 003/109] Fix userdom_write_user_tmp_dirs() to allow caller
domain also read/write user_tmp_t dirs
---
policy/modules/system/userdomain.if | 2 ++
1 file changed, 2 insertions(+)
diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if
index 44acc0cbc..5059b4a21 100644
--- a/policy/modules/system/userdomain.if
+++ b/policy/modules/system/userdomain.if
@@ -5332,6 +5332,8 @@ interface(`userdom_write_user_tmp_dirs',`
type user_tmp_t;
')
+ list_dirs_pattern($1, user_tmp_t, user_tmp_t)
+ rw_dirs_pattern($1, user_tmp_t, user_tmp_t)
write_files_pattern($1, user_tmp_t, user_tmp_t)
')
--
2.19.1
Reference in New Issue View Git Blame Copy Permalink