gui-libs/greetd has a line of policy (insignificant, but still relevant) in the hardened refpolicy: ./policy/modules/services/xserver.fc:80:/usr/bin/greetd -- gen_context(system_u:object_r:xdm_exec_t,s0) This likely means that sec-policy/selinux-xserver should be pulled in for selinux systems. As for how, I'm not entirely too sure how the small files policy would affect this, but I would think maybe a selinux use flag would work?
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=dfba725be83c511fa86d0351f7f521a8d175efc1 commit dfba725be83c511fa86d0351f7f521a8d175efc1 Author: Rahul Sandhu <rahul@sandhuservices.dev> AuthorDate: 2024-09-23 17:15:12 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2024-09-24 07:54:46 +0000 gui-libs/greetd: add sec-policy/selinux-xserver to RDEPEND for SELinux For SELinux system, greetd requires sec-policy/selinux-xserver add runtime. Let's add it to RDEPEND. Closes: https://bugs.gentoo.org/933707 Signed-off-by: Rahul Sandhu <rahul@sandhuservices.dev> Closes: https://github.com/gentoo/gentoo/pull/38746 Signed-off-by: Sam James <sam@gentoo.org> gui-libs/greetd/greetd-0.10.3.ebuild | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-)
