From ca9ce18eac0054c359a17a0bcdb5f3436caa501e Mon Sep 17 00:00:00 2001 From: Dan Walsh Date: Thu, 3 Nov 2011 14:29:32 -0400 Subject: [PATCH] Allow systemd_tmpfiles_t to delete all user content, if the user moves a file to /tmp, systemd_tmpfiles_t needs to be able to delete it. Also will fix the abiltiy to delete /run/user/ content --- policy/modules/system/systemd.te | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/policy/modules/system/systemd.te b/policy/modules/system/systemd.te index 84e0e66a..35fb8f87 100644 --- a/policy/modules/system/systemd.te +++ b/policy/modules/system/systemd.te @@ -259,10 +259,10 @@ seutil_read_file_contexts(systemd_tmpfiles_t) ifdef(`distro_redhat',` userdom_list_user_home_content(systemd_tmpfiles_t) - userdom_delete_user_home_content_dirs(systemd_tmpfiles_t) - userdom_delete_user_home_content_files(systemd_tmpfiles_t) - userdom_delete_user_home_content_sock_files(systemd_tmpfiles_t) - userdom_delete_user_home_content_symlinks(systemd_tmpfiles_t) + userdom_delete_all_user_home_content_dirs(systemd_tmpfiles_t) + userdom_delete_all_user_home_content_files(systemd_tmpfiles_t) + userdom_delete_all_user_home_content_sock_files(systemd_tmpfiles_t) + userdom_delete_all_user_home_content_symlinks(systemd_tmpfiles_t) ') optional_policy(` -- 2.47.3