39 lines
1.3 KiB
Diff
39 lines
1.3 KiB
Diff
From 19946217c722442b7bfd83facfdcd441385604e0 Mon Sep 17 00:00:00 2001
|
|
From: Chris PeBenito <Christopher.PeBenito@microsoft.com>
|
|
Date: Thu, 9 Feb 2023 14:37:21 +0000
|
|
Subject: [PATCH 24/35] usermanage: Handle symlinks in /usr/share/cracklib.
|
|
|
|
Signed-off-by: Chris PeBenito <Christopher.PeBenito@microsoft.com>
|
|
---
|
|
policy/modules/admin/usermanage.if | 1 +
|
|
policy/modules/admin/usermanage.te | 1 +
|
|
2 files changed, 2 insertions(+)
|
|
|
|
MSFT_TAG: pending
|
|
|
|
diff --git a/policy/modules/admin/usermanage.if b/policy/modules/admin/usermanage.if
|
|
index 340d02456..75589e353 100644
|
|
--- a/policy/modules/admin/usermanage.if
|
|
+++ b/policy/modules/admin/usermanage.if
|
|
@@ -322,4 +322,5 @@ interface(`usermanage_read_crack_db',`
|
|
|
|
files_search_var($1)
|
|
read_files_pattern($1, crack_db_t, crack_db_t)
|
|
+ read_lnk_files_pattern($1, crack_db_t, crack_db_t)
|
|
')
|
|
diff --git a/policy/modules/admin/usermanage.te b/policy/modules/admin/usermanage.te
|
|
index 636d0afdf..4123605c9 100644
|
|
--- a/policy/modules/admin/usermanage.te
|
|
+++ b/policy/modules/admin/usermanage.te
|
|
@@ -310,6 +310,7 @@ allow passwd_t self:msgq create_msgq_perms;
|
|
allow passwd_t self:msg { send receive };
|
|
|
|
allow passwd_t crack_db_t:dir list_dir_perms;
|
|
+read_lnk_files_pattern(passwd_t, crack_db_t, crack_db_t)
|
|
read_files_pattern(passwd_t, crack_db_t, crack_db_t)
|
|
|
|
kernel_read_kernel_sysctls(passwd_t)
|
|
--
|
|
2.34.1
|
|
|