Updated readme to address SELinux problems (closes #494) (#1019)

PR is an edit of the repo readme. See commit message.

Co-authored-by: AnErrupTion <anerruption+codeberg@disroot.org>
Reviewed-on: https://codeberg.org/fairyglade/ly/pulls/1019
Reviewed-by: AnErrupTion <anerruption+codeberg@disroot.org>
This commit is contained in:
dumbsplash 2026-07-05 20:59:40 +02:00 committed by AnErrupTion
parent 63f0f4931c
commit 1d272ff74f
1 changed files with 28 additions and 3 deletions

View File

@ -39,13 +39,38 @@ Join us on Matrix over at [#ly-dm:matrix.org](https://matrix.to/#/#ly-dm:matrix.
### Fedora
> [!WARNING]
> You may encounter issues with SELinux on Fedora. It is recommended to add a rule for Ly as it currently does not ship one.
```
# dnf install kernel-devel pam-devel libxcb-devel zig xorg-x11-xauth xorg-x11-server brightnessctl
```
> [!WARNING]
> Distributions using SELinux such as Fedora and openSUSE Tumbleweed may encounter issues. If you encounter such issues, such as session launch failures, proceed with the following steps:
>
> ```
> # ausearch -m avc -ts recent
> ```
>
> If SELinux is denying process context transition, you will see this output:
>
> ```
> denied { transition } for pid=XXXX comm="ly" path="/usr/bin/bash"
> scontext=system_u:system_r:unconfined_service_t:s0
> tcontext=unconfined_u:unconfined_r:unconfined_t:s0
> tclass=process permissive=0
> ```
>
> Pipe this output into `audit2allow` to generate a security module package. This will persist regardless of changes to filesystem permissions:
>
> ```
> # ausearch -m avc -ts recent | audit2allow -M ly-local
> ```
>
> ```
> # semodule -i ly-local.pp
> ```
>
> *This fix has been confirmed on Fedora 39 and 44 and openSUSE Tumbleweed. (#494)*
### FreeBSD
```