From d64e0261d0007413a795c4cf01f9d06b170da3f5 Mon Sep 17 00:00:00 2001 From: Marius Bakke Date: Wed, 25 Nov 2020 23:07:29 +0100 Subject: [PATCH] etc: Add more SELinux permissions for the daemon. This is needed for some package test suites. * etc/guix-daemon.cil.in (guix_daemon): Permit unix_dgram_socket operations. --- etc/guix-daemon.cil.in | 3 +++ 1 file changed, 3 insertions(+) diff --git a/etc/guix-daemon.cil.in b/etc/guix-daemon.cil.in index 91958b7617..0d7945843e 100644 --- a/etc/guix-daemon.cil.in +++ b/etc/guix-daemon.cil.in @@ -372,6 +372,9 @@ (allow guix_daemon_t self (unix_stream_socket (connectto))) + (allow guix_daemon_t + self + (unix_dgram_socket (create bind connect sendto read write))) (allow guix_daemon_t node_t