Small patches for dbus access to talk to init for getting dynamic users with systemd. The daemons do such checks from library code. Signed-off-by: Russell Coker <russell@xxxxxxxxxxxx> Index: refpolicy-2.20220216/policy/modules/services/dictd.te =================================================================== --- refpolicy-2.20220216.orig/policy/modules/services/dictd.te +++ refpolicy-2.20220216/policy/modules/services/dictd.te @@ -79,3 +79,6 @@ optional_policy(` seutil_sigchld_newrole(dictd_t) ') +ifdef(`init_systemd',` + init_dbus_chat(dictd_t) +') Index: refpolicy-2.20220216/policy/modules/services/postfix.te =================================================================== --- refpolicy-2.20220216.orig/policy/modules/services/postfix.te +++ refpolicy-2.20220216/policy/modules/services/postfix.te @@ -376,9 +376,6 @@ manage_lnk_files_pattern(postfix_bounce_ optional_policy(` init_dbus_chat(postfix_bounce_t) -') - -optional_policy(` dbus_system_bus_client(postfix_bounce_t) ') @@ -754,6 +751,11 @@ optional_policy(` unconfined_run_to(postfix_showq_t, postfix_showq_exec_t) ') +ifdef(`init_systemd',` + init_dbus_chat(postfix_showq_t) + dbus_system_bus_client(postfix_showq_t) +') + ######################################## # # Smtp delivery local policy @@ -778,6 +780,12 @@ optional_policy(` ') optional_policy(` + dbus_send_system_bus(postfix_smtp_t) + dbus_system_bus_client(postfix_smtp_t) + init_dbus_chat(postfix_smtp_t) +') + +optional_policy(` dovecot_stream_connect(postfix_smtp_t) ') @@ -815,9 +823,8 @@ optional_policy(` ') optional_policy(` - dbus_send_system_bus(postfix_smtp_t) - dbus_system_bus_client(postfix_smtp_t) - init_dbus_chat(postfix_smtp_t) + dbus_system_bus_client(postfix_smtpd_t) + init_dbus_chat(postfix_smtpd_t) ') optional_policy(`
