summaryrefslogtreecommitdiffstats
path: root/recipes-security/refpolicy/refpolicy/0020-fc-ldap-apply-policy-to-ldap-alternatives.patch
diff options
context:
space:
mode:
Diffstat (limited to 'recipes-security/refpolicy/refpolicy/0020-fc-ldap-apply-policy-to-ldap-alternatives.patch')
-rw-r--r--recipes-security/refpolicy/refpolicy/0020-fc-ldap-apply-policy-to-ldap-alternatives.patch40
1 files changed, 40 insertions, 0 deletions
diff --git a/recipes-security/refpolicy/refpolicy/0020-fc-ldap-apply-policy-to-ldap-alternatives.patch b/recipes-security/refpolicy/refpolicy/0020-fc-ldap-apply-policy-to-ldap-alternatives.patch
new file mode 100644
index 0000000..baad70c
--- /dev/null
+++ b/recipes-security/refpolicy/refpolicy/0020-fc-ldap-apply-policy-to-ldap-alternatives.patch
@@ -0,0 +1,40 @@
1From a1c0776ac6405d1b6aeadf07cc222f5cc9daa424 Mon Sep 17 00:00:00 2001
2From: Yi Zhao <yi.zhao@windriver.com>
3Date: Fri, 15 Nov 2019 11:06:13 +0800
4Subject: [PATCH] fc/ldap: apply policy to ldap alternatives
5
6Upstream-Status: Inappropriate [embedded specific]
7
8Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
9---
10 policy/modules/services/ldap.fc | 5 +++++
11 1 file changed, 5 insertions(+)
12
13diff --git a/policy/modules/services/ldap.fc b/policy/modules/services/ldap.fc
14index 0a1d08d0f..65b202962 100644
15--- a/policy/modules/services/ldap.fc
16+++ b/policy/modules/services/ldap.fc
17@@ -1,8 +1,10 @@
18 /etc/ldap/slapd\.conf -- gen_context(system_u:object_r:slapd_etc_t,s0)
19 /etc/openldap/certs(/.*)? gen_context(system_u:object_r:slapd_cert_t,s0)
20 /etc/openldap/slapd\.d(/.*)? gen_context(system_u:object_r:slapd_db_t,s0)
21+/etc/openldap/slapd\.conf -- gen_context(system_u:object_r:slapd_etc_t,s0)
22
23 /etc/rc\.d/init\.d/ldap -- gen_context(system_u:object_r:slapd_initrc_exec_t,s0)
24+/etc/rc\.d/init\.d/openldap -- gen_context(system_u:object_r:slapd_initrc_exec_t,s0)
25
26 /usr/bin/slapd -- gen_context(system_u:object_r:slapd_exec_t,s0)
27
28@@ -25,6 +27,9 @@
29 /var/log/ldap.* gen_context(system_u:object_r:slapd_log_t,s0)
30 /var/log/slapd.* gen_context(system_u:object_r:slapd_log_t,s0)
31
32+/var/openldap(/.*)? gen_context(system_u:object_r:slapd_db_t,s0)
33+/var/openldap/replog(/.*)? gen_context(system_u:object_r:slapd_replog_t,s0)
34+
35 /run/ldapi -s gen_context(system_u:object_r:slapd_runtime_t,s0)
36 /run/openldap(/.*)? gen_context(system_u:object_r:slapd_runtime_t,s0)
37 /run/slapd.* -s gen_context(system_u:object_r:slapd_runtime_t,s0)
38--
392.25.1
40
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-05-09 05:56:38 +0000