]> git.ipfire.org Git - people/stevee/selinux-policy.git/commitdiff
projects / people / stevee / selinux-policy.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: b60c579)
Not sure if this is the right thing to do but systemd_logind_t needs
authorDominick Grift <domg472@gmail.com>
Fri, 15 Jul 2011 10:37:12 +0000 (12:37 +0200)
committerDominick Grift <domg472@gmail.com>
Fri, 15 Jul 2011 13:00:38 +0000 (15:00 +0200)
this and since init_systemd_domain has not had much use yet, it may be
applicable to all long running systemd domains.

By the way we should probably differentiate between long running systemd
domains and one shot systemd domains.

policy/modules/system/init.if patch | blob | blame | history

diff --git a/policy/modules/system/init.if b/policy/modules/system/init.if
index 5e4571c106f5ee9eca7a54f33824243090c10f98..0d7aa40c65815138e58c1d4cabc19a1ba517f986 100644 (file)
--- a/policy/modules/system/init.if
+++ b/policy/modules/system/init.if
@@ -110,6 +110,7 @@ interface(`init_systemd_domain',`
         domtrans_pattern(init_t,$2,$1)
         allow init_t $1:unix_stream_socket create_stream_socket_perms;
         allow init_t $1:unix_dgram_socket create_socket_perms;
+               allow $1 init_t:unix_stream_socket ioctl;
         allow $1 init_t:unix_dgram_socket sendto;
     ')
 ')
The IPFire selinux policy.