Compare commits
2 commits
73798e518e
...
b8c1977874
| Author | SHA1 | Date | |
|---|---|---|---|
| b8c1977874 | |||
| 6ecad0c5c4 |
2 changed files with 0 additions and 20 deletions
|
|
@ -29,14 +29,6 @@ RUN dnf install --allowerasing -y sonic-keybind-daemon sonic-frameworks-windowsy
|
||||||
RUN dnf remove -y sddm && \
|
RUN dnf remove -y sddm && \
|
||||||
dnf install --allowerasing -y sonic-login-manager
|
dnf install --allowerasing -y sonic-login-manager
|
||||||
|
|
||||||
RUN dnf install -y selinux-policy-devel checkpolicy
|
|
||||||
|
|
||||||
COPY selinux/plasmalogin-selinux.te /tmp/plasmalogin-selinux.te
|
|
||||||
RUN checkmodule -M -m -o /tmp/plasmalogin-selinux.mod /tmp/plasmalogin-selinux.te && \
|
|
||||||
semodule_package -o /tmp/plasmalogin-selinux.pp -m /tmp/plasmalogin-selinux.mod && \
|
|
||||||
semodule -i /tmp/plasmalogin-selinux.pp && \
|
|
||||||
rm -f /tmp/plasmalogin-selinux.*
|
|
||||||
|
|
||||||
RUN dnf install -y fish distrobox nvtop intel-media-driver libva-intel-driver htop firefox
|
RUN dnf install -y fish distrobox nvtop intel-media-driver libva-intel-driver htop firefox
|
||||||
|
|
||||||
# Remove plocate to avoid updatedb going crazy with scanning the file system once a day
|
# Remove plocate to avoid updatedb going crazy with scanning the file system once a day
|
||||||
|
|
|
||||||
|
|
@ -1,12 +0,0 @@
|
||||||
module plasmalogin-selinux 1.0;
|
|
||||||
|
|
||||||
require {
|
|
||||||
type unconfined_t;
|
|
||||||
type xdm_exec_t;
|
|
||||||
class file { entrypoint execute };
|
|
||||||
}
|
|
||||||
|
|
||||||
# Allow the plasmalogin process to execute the X11 user helper binary
|
|
||||||
# which is labeled as xdm_exec_t. This is needed when the plasmalogin
|
|
||||||
# daemon is not running in the xdm_t domain on SELinux enforcing systems.
|
|
||||||
allow unconfined_t xdm_exec_t:file { entrypoint execute };
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue