diff --git a/refpolicy/policy/modules/system/corecommands.fc b/refpolicy/policy/modules/system/corecommands.fc index 666ac9da..53e7a7b7 100644 --- a/refpolicy/policy/modules/system/corecommands.fc +++ b/refpolicy/policy/modules/system/corecommands.fc @@ -46,6 +46,11 @@ ifdef(`distro_redhat',` /etc/sysconfig/network-scripts/ifup-.* -- gen_context(system_u:object_r:bin_t,s0) /etc/sysconfig/network-scripts/ifdown-.* -- gen_context(system_u:object_r:bin_t,s0) +/etc/X11/xdm/GiveConsole -- gen_context(system_u:object_r:bin_t,s0) +/etc/X11/xdm/TakeConsole -- gen_context(system_u:object_r:bin_t,s0) +/etc/X11/xdm/Xsetup_0 -- gen_context(system_u:object_r:bin_t,s0) +/etc/X11/xinit(/.*)? gen_context(system_u:object_r:bin_t,s0) + ifdef(`distro_debian',` /etc/mysql/debian-start -- gen_context(system_u:object_r:bin_t,s0) ') @@ -54,10 +59,13 @@ ifdef(`targeted_policy',` /etc/X11/prefdm -- gen_context(system_u:object_r:bin_t,s0) ') -/etc/X11/xdm/GiveConsole -- gen_context(system_u:object_r:bin_t,s0) -/etc/X11/xdm/TakeConsole -- gen_context(system_u:object_r:bin_t,s0) -/etc/X11/xdm/Xsetup_0 -- gen_context(system_u:object_r:bin_t,s0) -/etc/X11/xinit(/.*)? gen_context(system_u:object_r:bin_t,s0) +# +# /lib +# + +ifdef(`distro_gentoo',` +/lib/rcscripts/sh(/.*)? gen_context(system_u:object_r:bin_t,s0) +') # # /sbin diff --git a/refpolicy/policy/modules/system/init.fc b/refpolicy/policy/modules/system/init.fc index a55e621c..895a601f 100644 --- a/refpolicy/policy/modules/system/init.fc +++ b/refpolicy/policy/modules/system/init.fc @@ -23,6 +23,7 @@ ifdef(`targeted_policy', `', ` # /sbin # /sbin/init -- gen_context(system_u:object_r:init_exec_t,s0) + ifdef(`distro_gentoo', ` /sbin/rc -- gen_context(system_u:object_r:initrc_exec_t,s0) /sbin/runscript -- gen_context(system_u:object_r:initrc_exec_t,s0)