[refpolicy] [PATCH 0/3 v2] Miscellaneous fixes for systemd in strict mode

Krzysztof Nowicki krzysztof.a.nowicki at gmail.com
Thu May 18 19:31:07 UTC 2017


This patch series fixes a number of SELinux denials when booting systemd
in strict mode.

v2:
 - Fixed policy coding style according to official guidelines
 - Renamed GPT generator type
 - Refactored systemd-tmpfiles config patch to reuse existing type
 - Refactored systemd-networkd socket activation policy

Krzysztof Nowicki (3):
      Add policy for systemd GPT generator
      Label systemd-tmpfilesd static configuration files
      Add policy for systemd-networkd

 policy/modules/system/init.if     | 20 ++++++++++
 policy/modules/system/modutils.te |  2 +-
 policy/modules/system/systemd.fc  | 11 ++++++
 policy/modules/system/systemd.if  |  4 +-
 policy/modules/system/systemd.te  | 62 +++++++++++++++++++++++++++++++
 5 files changed, 96 insertions(+), 3 deletions(-)



More information about the refpolicy mailing list