me
/
guix
Archived
1
0
Fork 0
Code

etc: SELinux: Allow init process to setattr on profile directories. 

* etc/guix-daemon.cil.in: Add rule.
Ricardo Wurmus 2022-12-23 16:48:20 +01:00
parent 4a134ed32e
commit afaeb657b1
No known key found for this signature in database
GPG Key ID: 197A5888235FACAC
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
etc/guix-daemon.cil.in
View File

@ -94,6 +94,9 @@
(allow init_t (allow init_t
guix_store_content_t guix_store_content_t
(file (open read execute))) (file (open read execute)))
(allow init_t
guix_profiles_t
(dir (setattr)))
;; guix-daemon needs to know the names of users ;; guix-daemon needs to know the names of users
(allow guix_daemon_t (allow guix_daemon_t