You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
26 lines
885 B
26 lines
885 B
From 231626933e5fd54b8d9e66dfc9a8a374a9192121 Mon Sep 17 00:00:00 2001 |
|
From: Phil Sutter <psutter@redhat.com> |
|
Date: Fri, 16 Jul 2021 21:51:49 +0200 |
|
Subject: [PATCH] extensions: SECMARK: Use a better context in test case |
|
|
|
RHEL SELinux policies don't allow setting |
|
system_u:object_r:firewalld_exec_t:s0 context. Use one instead which has |
|
'packet_type' attribute (identified via |
|
'seinfo -xt | grep packet_type'). |
|
--- |
|
extensions/libxt_SECMARK.t | 2 +- |
|
1 file changed, 1 insertion(+), 1 deletion(-) |
|
|
|
diff --git a/extensions/libxt_SECMARK.t b/extensions/libxt_SECMARK.t |
|
index 39d4c09348bf4..295e7a7244902 100644 |
|
--- a/extensions/libxt_SECMARK.t |
|
+++ b/extensions/libxt_SECMARK.t |
|
@@ -1,4 +1,4 @@ |
|
:INPUT,FORWARD,OUTPUT |
|
*security |
|
--j SECMARK --selctx system_u:object_r:firewalld_exec_t:s0;=;OK |
|
+-j SECMARK --selctx system_u:object_r:ssh_server_packet_t:s0;=;OK |
|
-j SECMARK;;FAIL |
|
-- |
|
2.34.1 |
|
|
|
|