Hello,
I discovered today that the GDM own processes are started as
unconfined_t instead of xdm_t because systemd --user process itself is
started in that context.
This is probably related to:
commit da156aea1e89a6ff6025be7e50c9c8173e5a6dcf
Author: Chris PeBenito <Christopher.PeBenito@xxxxxxxxxxxxx>
Date: Fri Apr 19 11:50:59 2019 -0400
systemd: Add initial policy for systemd --user.
This is just a start; it does not cover all uses.
Signed-off-by: Chris PeBenito <Christopher.PeBenito@xxxxxxxxxxxxx>
Was that expected and/or wanted?
Kind regards,
Laurent Bigonville
