首页 开源 资讯 活动 开源许可证
软件工程云服务
软件代码质量检测云服务 持续集成与部署云服务 社区个性化内容推荐服务 贡献审阅人推荐服务 群体化学习服务 重睛鸟代码扫描工具
Watch 1 Star 0 Fork 35

imxcc/selinux-policy

forked from src-openEuler/selinux-policy 
代码 Issues 0 Pull Requests 0 Wiki 0 统计
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
该仓库未声明开源许可证文件(LICENSE),使用请关注具体项目描述及其代码上游依赖。
项目仓库所选许可证以仓库主分支所使用许可证为准
克隆/下载
backport-Allow-systemd-machined-manage-systemd-userdbd-runtim.patch 2.09 KB
一键复制 编辑 原始数据 按行查看 历史
luhuaxin 提交于 2021-05-31 16:38 . backport some upstream patches
1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859
From 9b31818705c564f94c46366ef83efa4951ffa64a Mon Sep 17 00:00:00 2001

From: Zdenek Pytela <zpytela@redhat.com>

Date: Tue, 12 Jan 2021 18:36:07 +0100

Reference: https://github.com/fedora-selinux/selinux-policy/commit/9b31818705c564f94c46366ef83efa4951ffa64a

Conflict: NA

Subject: [PATCH] Allow systemd-machined manage systemd-userdbd runtime sockets



Add the systemd_manage_userdbd_runtime_sock_files() interface

and remove systemd_create_userdbd_runtime_sock_files()

which is not used any longer.



Resolves: rhbz#1891182

---

 policy/modules/system/systemd.if | 6 +++---

 policy/modules/system/systemd.te | 2 +-

 2 files changed, 4 insertions(+), 4 deletions(-)



diff --git a/policy/modules/system/systemd.if b/policy/modules/system/systemd.if

index d10ae16..67479ce 100644

--- a/policy/modules/system/systemd.if

+++ b/policy/modules/system/systemd.if

@@ -2486,7 +2486,7 @@ interface(`systemd_userdbd_stream_connect',`

 

 #######################################

 ## <summary>

-##	Create a named socket in userdbd runtime directory

+##	Manage named sockets in userdbd runtime directory

 ## </summary>

 ## <param name="domain">

 ##	<summary>

@@ -2494,10 +2494,10 @@ interface(`systemd_userdbd_stream_connect',`

 ##	</summary>

 ## </param>

 #

-interface(`systemd_create_userdbd_runtime_sock_files',`

+interface(`systemd_manage_userdbd_runtime_sock_files',`

 	gen_require(`

         	type systemd_userdbd_runtime_t;

 	')

 

-	create_sock_files_pattern($1, systemd_userdbd_runtime_t, systemd_userdbd_runtime_t)

+	manage_sock_files_pattern($1, systemd_userdbd_runtime_t, systemd_userdbd_runtime_t)

 ')

diff --git a/policy/modules/system/systemd.te b/policy/modules/system/systemd.te

index c806b29..3eb12be 100644

--- a/policy/modules/system/systemd.te

+++ b/policy/modules/system/systemd.te

@@ -416,7 +416,7 @@ init_manage_config_transient_files(systemd_machined_t)

 logging_dgram_send(systemd_machined_t)

 

 systemd_read_efivarfs(systemd_machined_t)

-systemd_create_userdbd_runtime_sock_files(systemd_machined_t)

+systemd_manage_userdbd_runtime_sock_files(systemd_machined_t)

 

 userdom_dbus_send_all_users(systemd_machined_t)

 

-- 

1.8.3.1
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化