Add Sonic Login Manager SELinux rule to allow it to start SonicDE X11
Some checks failed
Build RPMs / build (sonic-interface-libraries.spec) (push) Failing after 14s
Build RPMs / build (sonic-win.spec) (push) Failing after 6s
Build RPMs / build (sonic-workspace.spec) (push) Failing after 7s

This commit is contained in:
Anders da Silva Rytter Hansen 2026-06-30 16:29:14 -03:00
commit 91c1f3ffff
3 changed files with 62 additions and 1 deletions

View file

@ -0,0 +1,12 @@
module plasmalogin-selinux 1.0;
require {
type unconfined_t;
type xdm_exec_t;
class file { entrypoint execute };
}
# Allow the plasmalogin process to execute the X11 user helper binary
# which is labeled as xdm_exec_t. This is needed when the plasmalogin
# daemon is not running in the xdm_t domain on SELinux enforcing systems.
allow unconfined_t xdm_exec_t:file { entrypoint execute };