From d7fdbe58b9beb2d8ac5bdb3ea8349f1338d8eaf4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Aur=C3=A9lien=20Bompard?= Date: Fri, 2 Jun 2023 08:30:16 +0200 Subject: [PATCH] Add one more perm for collecd's selinux package MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Aurélien Bompard --- .../base/files/selinux/fi-collectd.mod | Bin 4479 -> 4579 bytes .../base/files/selinux/fi-collectd.pp | Bin 4495 -> 4595 bytes .../base/files/selinux/fi-collectd.te | 3 ++- 3 files changed, 2 insertions(+), 1 deletion(-) diff --git a/roles/collectd/base/files/selinux/fi-collectd.mod b/roles/collectd/base/files/selinux/fi-collectd.mod index 591c3685b8f7ab0e7b07a4f571aee645f4305665..3cb62bcb63c7c113329e0e9c5c663d5cdfa395c8 100644 GIT binary patch delta 57 zcmV-90LK6SBI6^FLjp5ElYtHsu~@GK0TYwZ21Apt1{||z28afe(*_umqYNmMPX`#2 PYYPmMgbon1{|tZxPrMVa delta 45 zcmV+|0Mh^CBmW|hLjp2Dli>~%u~@GK0TPqY21Apt1{||z28afeO2-os delta 45 zcmV+|0Mh^SBab7HQvxzTlkpA{v1qRa0TPqo21Ap-1{||@28afe^bQb{4Fe3be+_g5 De|ry} diff --git a/roles/collectd/base/files/selinux/fi-collectd.te b/roles/collectd/base/files/selinux/fi-collectd.te index 248c2a3218..8184719164 100644 --- a/roles/collectd/base/files/selinux/fi-collectd.te +++ b/roles/collectd/base/files/selinux/fi-collectd.te @@ -1,4 +1,4 @@ -module fi-collectd 1.11.2; +module fi-collectd 1.11.3; require { type shell_exec_t; @@ -51,3 +51,4 @@ allow collectd_t self:capability chown; # Allow the CGI to request a flush of the RRDs through collectd's unix socket #============= collectd_script_t ============== allow collectd_script_t collectd_var_run_t:sock_file write; +allow collectd_script_t collectd_t:unix_stream_socket connectto;