From 9fdddc27b9344130fa7385c41277f4e354e15283 Mon Sep 17 00:00:00 2001 From: Simon Fels Date: Mon, 24 Oct 2016 06:49:39 +0200 Subject: [PATCH 1/3] interfaces: builtin: allow network-manager modifying the system hostname --- interfaces/builtin/network_manager.go | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/interfaces/builtin/network_manager.go b/interfaces/builtin/network_manager.go index 4c2bc383f2b..d2cc82acc20 100644 --- a/interfaces/builtin/network_manager.go +++ b/interfaces/builtin/network_manager.go @@ -141,6 +141,12 @@ dbus (send) path=/org/freedesktop/hostname1 interface=org.freedesktop.DBus.Properties peer=(label=unconfined), +dbus(receive, send) + bus=system + path=/org/freedesktop/hostname1 + interface=org.freedesktop.hostname1 + member={Set,SetStatic}Hostname + peer=(label=unconfined), # Sleep monitor inside NetworkManager needs this dbus (send) @@ -204,6 +210,7 @@ sendmmsg sendmsg sendto setsockopt +sethostname shutdown socketpair socket From 88b075463cf0daa4bbd72cc92fd043842f23e1f7 Mon Sep 17 00:00:00 2001 From: Simon Fels Date: Mon, 24 Oct 2016 07:01:45 +0200 Subject: [PATCH 2/3] interfaces: builtin: allow network-manager receiving property changes from hostnamed --- interfaces/builtin/network_manager.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/interfaces/builtin/network_manager.go b/interfaces/builtin/network_manager.go index d2cc82acc20..64472116f10 100644 --- a/interfaces/builtin/network_manager.go +++ b/interfaces/builtin/network_manager.go @@ -136,7 +136,7 @@ dbus (receive, send) interface=org.freedesktop.DBus.*, # Allow access to hostname system service -dbus (send) +dbus (receive, send) bus=system path=/org/freedesktop/hostname1 interface=org.freedesktop.DBus.Properties From f6fc1dab6d1f62d4aff6000e0adc0a6457846c29 Mon Sep 17 00:00:00 2001 From: Simon Fels Date: Mon, 24 Oct 2016 07:06:37 +0200 Subject: [PATCH 3/3] interfaces: builtin: allow access to hostname service for bluez --- interfaces/builtin/bluez.go | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/interfaces/builtin/bluez.go b/interfaces/builtin/bluez.go index 0693441476c..4eb905c50d7 100644 --- a/interfaces/builtin/bluez.go +++ b/interfaces/builtin/bluez.go @@ -86,6 +86,13 @@ var bluezPermanentSlotAppArmor = []byte(` bus=system path=/org/bluez{,/**} interface=org.freedesktop.DBus.**, + + # Allow access to hostname system service + dbus (receive, send) + bus=system + path=/org/freedesktop/hostname1 + interface=org.freedesktop.DBus.Properties + peer=(label=unconfined), `) var bluezConnectedPlugAppArmor = []byte(`