lmtp and smtp are the same file require same context of setfiles complains

postfix_pickup_t wants to read postfix_spool_maildrop_t dir
2007-03-01 20:41:19 +00:00 · 2007-03-01 20:41:19 +00:00 · f2c69c47b3
commit f2c69c47b3
parent ecc98e19e3
3 changed files with 4 additions and 1 deletions
--- a/1
+++ b/1
@ -1,3 +1,4 @@
+- Patch for postfix lmtp labeling and pickup rule fix from Dan Walsh.
 - Patch for kerberized telnet fixes from Dan Walsh.
 - Patch for kerberized ftp and other ftp fixes from Dan Walsh.
 - Patch for an additional wine executable from Dan Walsh.
--- a/policy/modules/services/postfix.fc
+++ b/policy/modules/services/postfix.fc
@ -3,6 +3,7 @@
 ifdef(`distro_redhat', `
 /usr/libexec/postfix/.*	--	gen_context(system_u:object_r:postfix_exec_t,s0)
 /usr/libexec/postfix/cleanup --	gen_context(system_u:object_r:postfix_cleanup_exec_t,s0)
+/usr/libexec/postfix/lmtp --	gen_context(system_u:object_r:postfix_smtp_exec_t,s0)
 /usr/libexec/postfix/local --	gen_context(system_u:object_r:postfix_local_exec_t,s0)
 /usr/libexec/postfix/master --	gen_context(system_u:object_r:postfix_master_exec_t,s0)
 /usr/libexec/postfix/pickup --	gen_context(system_u:object_r:postfix_pickup_exec_t,s0)
--- a/policy/modules/services/postfix.te
+++ b/policy/modules/services/postfix.te
@ -1,5 +1,5 @@

-policy_module(postfix,1.4.0)
+policy_module(postfix,1.4.1)

 ########################################
 #
@ -386,6 +386,7 @@ rw_sock_files_pattern(postfix_pickup_t,postfix_public_t,postfix_public_t)

 postfix_list_spool(postfix_pickup_t)

+allow postfix_pickup_t postfix_spool_maildrop_t:dir list_dir_perms;
 read_files_pattern(postfix_pickup_t,postfix_spool_maildrop_t,postfix_spool_maildrop_t)
 delete_files_pattern(postfix_pickup_t,postfix_spool_maildrop_t,postfix_spool_maildrop_t)