token2/snapd
0
0
Fork 0
mirror of https://github.com/token2/snapd.git synced 2026-03-13 11:15:47 -07:00
Code Issues Packages Projects Releases Wiki Activity

data/selinux: add policykit_dbus_chat()

Browse Source 
Add an optional policy to allow policykit_dbus_chat(). Enables sending to and
receiving messages from policykit.

Signed-off-by: Maciej Borzecki <maciej.zenon.borzecki@canonical.com>
This commit is contained in:
Maciej Borzecki
2017-12-18 08:09:38 +01:00
parent 4002cc6124
commit 0cdff0e774
1 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
data/selinux/snappy.te
View File

@@ -216,6 +216,7 @@ corenet_udp_sendrecv_dns_port(snappy_t)
corenet_tcp_connect_dns_port(snappy_t)
corenet_sendrecv_dns_client_packets(snappy_t)
# allow polkit to reply to snapd
gen_require(` type policykit_t; class dbus send_msg; ')
allow policykit_t snappy_t:dbus send_msg;
# allow communication with polkit over dbus
optional_policy(`
policykit_dbus_chat(snappy_t)
')