Blame SOURCES/tigervnc-root-user-selinux-context.patch
|
 |
1e6979 |
From faf81b4b238e24fe29eb53f885a25367e212dd7b Mon Sep 17 00:00:00 2001
|
|
|
1e6979 |
From: Zdenek Pytela <zpytela@redhat.com>
|
|
|
1e6979 |
Date: Mon, 7 Feb 2022 10:45:41 +0100
|
|
|
1e6979 |
Subject: [PATCH] SELinux: use /root/.vnc in file context specification
|
|
|
1e6979 |
|
|
|
1e6979 |
Instead of HOME_ROOT/.vnc, /root/.vnc should be used
|
|
|
1e6979 |
for user root's home to specify default file context
|
|
|
1e6979 |
as HOME_ROOT actually means base for home dirs (usually /home).
|
|
|
1e6979 |
---
|
|
|
1e6979 |
unix/vncserver/selinux/vncsession.fc | 2 +-
|
|
|
1e6979 |
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
1e6979 |
|
|
|
1e6979 |
diff --git a/unix/vncserver/selinux/vncsession.fc b/unix/vncserver/selinux/vncsession.fc
|
|
|
324a25 |
index 6aaf4b1f4..bc81f8f25 100644
|
|
|
1e6979 |
--- a/unix/vncserver/selinux/vncsession.fc
|
|
|
1e6979 |
+++ b/unix/vncserver/selinux/vncsession.fc
|
|
|
1e6979 |
@@ -18,7 +18,7 @@
|
|
|
1e6979 |
#
|
|
|
1e6979 |
|
|
|
324a25 |
HOME_DIR/\.vnc(/.*)? gen_context(system_u:object_r:vnc_home_t,s0)
|
|
|
324a25 |
-HOME_ROOT/\.vnc(/.*)? gen_context(system_u:object_r:vnc_home_t,s0)
|
|
|
324a25 |
+/root/\.vnc(/.*)? gen_context(system_u:object_r:vnc_home_t,s0)
|
|
|
1e6979 |
|
|
|
1e6979 |
/usr/sbin/vncsession -- gen_context(system_u:object_r:vnc_session_exec_t,s0)
|
|
|
1e6979 |
/usr/libexec/vncsession-start -- gen_context(system_u:object_r:vnc_session_exec_t,s0)
|