From ee89b2a20b73505adf8b7ab3f469c373665c8224 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Timo=20M=E4kinen?= Date: Wed, 31 Aug 2011 13:11:10 +0300 Subject: [PATCH] Fixed selinux contexts from syslog datadirectories. --- syslog/manifests/init.pp | 32 ++++++++++++++++++++++++-------- 1 file changed, 24 insertions(+), 8 deletions(-) diff --git a/syslog/manifests/init.pp b/syslog/manifests/init.pp index d398ceb..38a2399 100644 --- a/syslog/manifests/init.pp +++ b/syslog/manifests/init.pp @@ -148,10 +148,11 @@ class syslog::standalone { if $syslog_datadir { file { $syslog_datadir: - ensure => directory, - mode => 2750, - owner => "root", - group => $group, + ensure => directory, + mode => 2750, + owner => "root", + group => $group, + seltype => "var_log_t", } file { "/srv/log": ensure => link, @@ -159,13 +160,15 @@ class syslog::standalone { owner => "root", group => $group, require => File[$syslog_datadir], + seltype => "var_log_t", } } else { file { "/srv/log": - ensure => directory, - mode => 2750, - owner => "root", - group => $group, + ensure => directory, + mode => 2750, + owner => "root", + group => $group, + seltype => "var_log_t", } } @@ -206,6 +209,19 @@ class syslog::standalone { default: { fail("Unknown \$syslog_type '$syslog_type'") } } + if "${selinux}" == "true" { + selinux::manage_fcontext { "/srv/log(/all\.log)?": + type => "var_log_t", + before => File["/srv/log"], + } + if $syslog_datadir { + selinux::manage_fcontext { "${syslog_datadir}(/all\.log)?": + type => "var_log_t", + before => File[$syslog_datadir], + } + } + } + }