[gentoo-commits] proj/hardened-refpolicy:next commit in: policy/modules/system/

Jason Zaman Sun, 01 Jan 2017 08:38:22 -0800

commit:     989ddb737f2e045e534d3238a9ed8248faf55c83
Author:     Guido Trentalancia <guido <AT> trentalancia <DOT> net>
AuthorDate: Tue Dec 27 15:33:57 2016 +0000
Commit:     Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Sun Jan  1 16:26:28 2017 +0000
URL:        
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=989ddb73


base: use new genhomedircon template for username

Use the new genhomedircon templates for username-dependant
file contexts (requires libsemanage >= 2.6).

This is the base policy part (1/2).

 policy/modules/system/userdomain.fc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/policy/modules/system/userdomain.fc 
b/policy/modules/system/userdomain.fc
index c8b881e..6c813b4 100644
--- a/policy/modules/system/userdomain.fc
+++ b/policy/modules/system/userdomain.fc
@@ -2,7 +2,7 @@ HOME_DIR        -d      
gen_context(system_u:object_r:user_home_dir_t,s0-mls_systemhigh)
 HOME_DIR/.+            gen_context(system_u:object_r:user_home_t,s0)
 HOME_DIR/\.pki(/.*)?   gen_context(system_u:object_r:user_cert_t,s0)
 
-/tmp/gconfd-USER -d    gen_context(system_u:object_r:user_tmp_t,s0)
+/tmp/gconfd-%{USERNAME} -d     gen_context(system_u:object_r:user_tmp_t,s0)
 
 /run/user              -d      
gen_context(system_u:object_r:user_runtime_root_t,s0)
 /run/user/[^/]+        -d      gen_context(system_u:object_r:user_runtime_t,s0)

[gentoo-commits] proj/hardened-refpolicy:next commit in: policy/modules/system/

Reply via email to