* [refpolicy] [PATCH] Systemd by version 231 starts using shared library and systemd daemons execute it. For this reason lib_t type is needed.
@ 2016-07-30 23:57 Lukas Vrabec
2016-07-31 2:55 ` Russell Coker
0 siblings, 1 reply; 5+ messages in thread
From: Lukas Vrabec @ 2016-07-30 23:57 UTC (permalink / raw)
To: refpolicy
---
policy/modules/system/libraries.fc | 2 ++
1 file changed, 2 insertions(+)
diff --git a/policy/modules/system/libraries.fc b/policy/modules/system/libraries.fc
index b532946..c4971ab 100644
--- a/policy/modules/system/libraries.fc
+++ b/policy/modules/system/libraries.fc
@@ -148,6 +148,8 @@ ifdef(`distro_debian',`
/usr/lib/nvidia/libGL(core)?\.so(\.[^/]*)* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
/usr/lib/xorg/modules/glesx\.so(\.[^/]*)* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
+/usr/lib/systemd/libsystemd-shared-231\.so.* -- gen_context(system_u:object_r:lib_t,s0)
+
/usr/(local/)?.*\.so(\.[^/]*)* -- gen_context(system_u:object_r:lib_t,s0)
/usr/(local/)?lib(64)?/wine/.+\.so -- gen_context(system_u:object_r:textrel_shlib_t,s0)
/usr/(local/)?lib(64)?/(sse2/)?libfame-.*\.so.* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
--
2.5.5
^ permalink raw reply related [flat|nested] 5+ messages in thread
* [refpolicy] [PATCH] Systemd by version 231 starts using shared library and systemd daemons execute it. For this reason lib_t type is needed.
2016-07-30 23:57 [refpolicy] [PATCH] Systemd by version 231 starts using shared library and systemd daemons execute it. For this reason lib_t type is needed Lukas Vrabec
@ 2016-07-31 2:55 ` Russell Coker
2016-08-02 14:19 ` Lukas Vrabec
0 siblings, 1 reply; 5+ messages in thread
From: Russell Coker @ 2016-07-31 2:55 UTC (permalink / raw)
To: refpolicy
231 is the version number. Needs a numeric regex so the next version doesn't break.
On 31 July 2016 9:57:54 AM AEST, Lukas Vrabec <lvrabec@redhat.com> wrote:
>---
> policy/modules/system/libraries.fc | 2 ++
> 1 file changed, 2 insertions(+)
>
>diff --git a/policy/modules/system/libraries.fc
>b/policy/modules/system/libraries.fc
>index b532946..c4971ab 100644
>--- a/policy/modules/system/libraries.fc
>+++ b/policy/modules/system/libraries.fc
>@@ -148,6 +148,8 @@ ifdef(`distro_debian',`
>/usr/lib/nvidia/libGL(core)?\.so(\.[^/]*)*
>-- gen_context(system_u:object_r:textrel_shlib_t,s0)
>/usr/lib/xorg/modules/glesx\.so(\.[^/]*)*
>-- gen_context(system_u:object_r:textrel_shlib_t,s0)
>
>+/usr/lib/systemd/libsystemd-shared-231\.so.* --
>gen_context(system_u:object_r:lib_t,s0)
>+
>/usr/(local/)?.*\.so(\.[^/]*)* -- gen_context(system_u:object_r:lib_t,s0)
>/usr/(local/)?lib(64)?/wine/.+\.so -- gen_context(system_u:object_r:textrel_shlib_t,s0)
>/usr/(local/)?lib(64)?/(sse2/)?libfame-.*\.so.* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
--
Sent from my Nexus 6P with K-9 Mail.
^ permalink raw reply [flat|nested] 5+ messages in thread
* [refpolicy] [PATCH] Systemd by version 231 starts using shared library and systemd daemons execute it. For this reason lib_t type is needed.
2016-07-31 2:55 ` Russell Coker
@ 2016-08-02 14:19 ` Lukas Vrabec
0 siblings, 0 replies; 5+ messages in thread
From: Lukas Vrabec @ 2016-08-02 14:19 UTC (permalink / raw)
To: refpolicy
On 07/31/2016 04:55 AM, Russell Coker wrote:
> 231 is the version number. Needs a numeric regex so the next version doesn't break.
>
> On 31 July 2016 9:57:54 AM AEST, Lukas Vrabec <lvrabec@redhat.com> wrote:
>> ---
>> policy/modules/system/libraries.fc | 2 ++
>> 1 file changed, 2 insertions(+)
>>
>> diff --git a/policy/modules/system/libraries.fc
>> b/policy/modules/system/libraries.fc
>> index b532946..c4971ab 100644
>> --- a/policy/modules/system/libraries.fc
>> +++ b/policy/modules/system/libraries.fc
>> @@ -148,6 +148,8 @@ ifdef(`distro_debian',`
>> /usr/lib/nvidia/libGL(core)?\.so(\.[^/]*)*
>> -- gen_context(system_u:object_r:textrel_shlib_t,s0)
>> /usr/lib/xorg/modules/glesx\.so(\.[^/]*)*
>> -- gen_context(system_u:object_r:textrel_shlib_t,s0)
>>
>> +/usr/lib/systemd/libsystemd-shared-231\.so.* --
>> gen_context(system_u:object_r:lib_t,s0)
>> +
>> /usr/(local/)?.*\.so(\.[^/]*)* -- gen_context(system_u:object_r:lib_t,s0)
>> /usr/(local/)?lib(64)?/wine/.+\.so -- gen_context(system_u:object_r:textrel_shlib_t,s0)
>> /usr/(local/)?lib(64)?/(sse2/)?libfame-.*\.so.* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
>
Yes.
You are right. I'll send new patch.
--
Lukas Vrabec
SELinux Solutions
Red Hat, Inc.
^ permalink raw reply [flat|nested] 5+ messages in thread
* [refpolicy] [PATCH] Systemd by version 231 starts using shared library and systemd daemons execute it. For this reason lib_t type is needed.
2016-08-02 14:20 Lukas Vrabec
@ 2016-08-03 0:22 ` Chris PeBenito
0 siblings, 0 replies; 5+ messages in thread
From: Chris PeBenito @ 2016-08-03 0:22 UTC (permalink / raw)
To: refpolicy
On 08/02/16 10:20, Lukas Vrabec wrote:
> ---
> policy/modules/system/libraries.fc | 2 ++
> 1 file changed, 2 insertions(+)
>
> diff --git a/policy/modules/system/libraries.fc b/policy/modules/system/libraries.fc
> index b532946..d61728f 100644
> --- a/policy/modules/system/libraries.fc
> +++ b/policy/modules/system/libraries.fc
> @@ -148,6 +148,8 @@ ifdef(`distro_debian',`
> /usr/lib/nvidia/libGL(core)?\.so(\.[^/]*)* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
> /usr/lib/xorg/modules/glesx\.so(\.[^/]*)* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
>
> +/usr/lib/systemd/libsystemd-shared-[0-9]+\.so.* -- gen_context(system_u:object_r:lib_t,s0)
> +
> /usr/(local/)?.*\.so(\.[^/]*)* -- gen_context(system_u:object_r:lib_t,s0)
> /usr/(local/)?lib(64)?/wine/.+\.so -- gen_context(system_u:object_r:textrel_shlib_t,s0)
> /usr/(local/)?lib(64)?/(sse2/)?libfame-.*\.so.* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
Merged.
--
Chris PeBenito
^ permalink raw reply [flat|nested] 5+ messages in thread
* [refpolicy] [PATCH] Systemd by version 231 starts using shared library and systemd daemons execute it. For this reason lib_t type is needed.
@ 2016-08-02 14:20 Lukas Vrabec
2016-08-03 0:22 ` Chris PeBenito
0 siblings, 1 reply; 5+ messages in thread
From: Lukas Vrabec @ 2016-08-02 14:20 UTC (permalink / raw)
To: refpolicy
---
policy/modules/system/libraries.fc | 2 ++
1 file changed, 2 insertions(+)
diff --git a/policy/modules/system/libraries.fc b/policy/modules/system/libraries.fc
index b532946..d61728f 100644
--- a/policy/modules/system/libraries.fc
+++ b/policy/modules/system/libraries.fc
@@ -148,6 +148,8 @@ ifdef(`distro_debian',`
/usr/lib/nvidia/libGL(core)?\.so(\.[^/]*)* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
/usr/lib/xorg/modules/glesx\.so(\.[^/]*)* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
+/usr/lib/systemd/libsystemd-shared-[0-9]+\.so.* -- gen_context(system_u:object_r:lib_t,s0)
+
/usr/(local/)?.*\.so(\.[^/]*)* -- gen_context(system_u:object_r:lib_t,s0)
/usr/(local/)?lib(64)?/wine/.+\.so -- gen_context(system_u:object_r:textrel_shlib_t,s0)
/usr/(local/)?lib(64)?/(sse2/)?libfame-.*\.so.* -- gen_context(system_u:object_r:textrel_shlib_t,s0)
--
2.5.5
^ permalink raw reply related [flat|nested] 5+ messages in thread
end of thread, other threads:[~2016-08-03 0:22 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2016-07-30 23:57 [refpolicy] [PATCH] Systemd by version 231 starts using shared library and systemd daemons execute it. For this reason lib_t type is needed Lukas Vrabec
2016-07-31 2:55 ` Russell Coker
2016-08-02 14:19 ` Lukas Vrabec
2016-08-02 14:20 Lukas Vrabec
2016-08-03 0:22 ` Chris PeBenito
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.