[node-patches] Change in ovirt-node[master]: ovirt.te: Enable local login after pass change (autoinstall)
dougsland at redhat.com
dougsland at redhat.com
Tue Sep 2 12:21:14 UTC 2014
Douglas Schilling Landgraf has uploaded a new change for review.
Change subject: ovirt.te: Enable local login after pass change (autoinstall)
......................................................................
ovirt.te: Enable local login after pass change (autoinstall)
In autoinstall we use adminpw flag to specify the password for admin user,
and after the first login is required to change the password.
However, if user tries to login in a different shell after
changing the password it's not possible. This patch updates
ovirt.te to enable it.
Change-Id: I1719dd6db0a1d57bd0b0af0dda834b61c14ad6ec
Bug-Url: https://bugzilla.redhat.com/show_bug.cgi?id=979350
Signed-off-by: Douglas Schilling Landgraf <dougsland at redhat.com>
---
M semodule/ovirt.te.in
1 file changed, 7 insertions(+), 0 deletions(-)
git pull ssh://gerrit.ovirt.org:29418/ovirt-node refs/changes/06/32306/1
diff --git a/semodule/ovirt.te.in b/semodule/ovirt.te.in
index 1264da2..d4671ac 100644
--- a/semodule/ovirt.te.in
+++ b/semodule/ovirt.te.in
@@ -356,10 +356,17 @@
require {
type chkpwd_t;
type tty_device_t;
+type file_t;
}
allow chkpwd_t tty_device_t:chr_file { read write };
allow chkpwd_t tmpfs_t:dir search;
+allow chkpwd_t file_t:file { read open };
+#============= passwd_t ==============
+require {
+type passwd_t;
+}
+allow passwd_t file_t:file { read open };
#============= getty_t ==============
require {
--
To view, visit http://gerrit.ovirt.org/32306
To unsubscribe, visit http://gerrit.ovirt.org/settings
Gerrit-MessageType: newchange
Gerrit-Change-Id: I1719dd6db0a1d57bd0b0af0dda834b61c14ad6ec
Gerrit-PatchSet: 1
Gerrit-Project: ovirt-node
Gerrit-Branch: master
Gerrit-Owner: Douglas Schilling Landgraf <dougsland at redhat.com>
More information about the node-patches
mailing list