millerson.name/gentoo-overlay
1
0
Fork 0
Code Issues Pull Requests Releases Activity

modify selinux policy for gitea

Browse Source
This commit is contained in:
Alexander Miroshnichenko
2019-05-26 21:45:23 +03:00
parent 5934810d3e
commit 17039da5e0
2 changed files with 5 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
sec-policy/selinux-gitea/files/gitea.te
View File

@@ -289,17 +289,10 @@ manage_files_pattern(gitea_repo_script_t, gitea_repo_script_exec_t, gitea_repo_s
gitea_append_log(gitea_repo_script_t)
tunable_policy(`gitea_enable_homedirs',`
#files_search_home(gitea_bin_t)
userdom_manage_user_home_content_dirs(gitea_bin_t)
userdom_manage_user_home_content_files(gitea_bin_t)
userdom_read_user_home_content_files(gitea_bin_t)
#xdg_read_config_files(gitea_bin_t)
#userdom_manage_user_home_content_dirs(gitea_t)
userdom_read_user_home_content_files(gitea_t)
')
########################################
#
# macros required to insert to another module policies
#
optional_policy(`
gen_require(`
type user_t;
@@ -317,6 +310,5 @@ optional_policy(`
gitea_read_tmp(ssh_keygen_t);
gitea_search_lib(sshd_t)
#read_files_pattern(sshd_t, gitea_var_lib_t, gitea_var_lib_t)
')