x/browbeat
Code Issues Proposed changes

Fix Fernet in httpd selinux type enforcement.

Browse Source 
Change-Id: I2fb9158c4008c22a226dd0c8ecd9a717ee9f645e
This commit is contained in:
Alex Krzos 2015-12-18 17:36:19 -05:00
parent 7096b2c6b4
commit 20f7e86fe5
1 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
ansible/browbeat/roles/keystone-token/files/my-keystone.te
View File

@ -11,4 +11,13 @@ require {
allow keystone_t etc_t:dir write; allow keystone_t etc_t:dir write;
#!!!! This avc is allowed in the current policy #!!!! This avc is allowed in the current policy
allow keystone_t self:process execmem; allow keystone_t self:process execmem;
require {
type httpd_t;
type etc_t;
class dir write;
}
#============= httpd_t ==============
allow httpd_t etc_t:dir write;