Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Jason Zaman <perfinion@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:next commit in: policy/modules/system/
Date: Sat, 25 Feb 2017 16:58:25
Message-Id: 1488040991.6fb566c033803208cc19261105ce611225d5f08d.perfinion@gentoo
1 commit: 6fb566c033803208cc19261105ce611225d5f08d
2 Author: Chris PeBenito <pebenito <AT> ieee <DOT> org>
3 AuthorDate: Sat Feb 25 13:39:58 2017 +0000
4 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
5 CommitDate: Sat Feb 25 16:43:11 2017 +0000
6 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=6fb566c0
7
8 init: Move interface and whitespace change.
9
10 policy/modules/system/init.if | 22 +++++++++++-----------
11 1 file changed, 11 insertions(+), 11 deletions(-)
12
13 diff --git a/policy/modules/system/init.if b/policy/modules/system/init.if
14 index b1778f1a..8d65e648 100644
15 --- a/policy/modules/system/init.if
16 +++ b/policy/modules/system/init.if
17 @@ -1137,12 +1137,12 @@ interface(`init_var_lib_filetrans',`
18
19 ######################################
20 ## <summary>
21 -## Allow search directory in the /run/systemd directory.
22 +## Allow search directory in the /run/systemd directory.
23 ## </summary>
24 ## <param name="domain">
25 -## <summary>
26 -## Domain allowed access.
27 -## </summary>
28 +## <summary>
29 +## Domain allowed access.
30 +## </summary>
31 ## </param>
32 #
33 interface(`init_search_pids',`
34 @@ -2270,7 +2270,7 @@ interface(`init_read_script_tmp_files',`
35
36 ########################################
37 ## <summary>
38 -## Read and write init script temporary data.
39 +## Read and write init script inherited temporary data.
40 ## </summary>
41 ## <param name="domain">
42 ## <summary>
43 @@ -2278,18 +2278,17 @@ interface(`init_read_script_tmp_files',`
44 ## </summary>
45 ## </param>
46 #
47 -interface(`init_rw_script_tmp_files',`
48 +interface(`init_rw_inherited_script_tmp_files',`
49 gen_require(`
50 type initrc_tmp_t;
51 ')
52
53 - files_search_tmp($1)
54 - rw_files_pattern($1, initrc_tmp_t, initrc_tmp_t)
55 + allow $1 initrc_tmp_t:file rw_inherited_file_perms;
56 ')
57
58 ########################################
59 ## <summary>
60 -## Read and write init script inherited temporary data.
61 +## Read and write init script temporary data.
62 ## </summary>
63 ## <param name="domain">
64 ## <summary>
65 @@ -2297,12 +2296,13 @@ interface(`init_rw_script_tmp_files',`
66 ## </summary>
67 ## </param>
68 #
69 -interface(`init_rw_inherited_script_tmp_files',`
70 +interface(`init_rw_script_tmp_files',`
71 gen_require(`
72 type initrc_tmp_t;
73 ')
74
75 - allow $1 initrc_tmp_t:file rw_inherited_file_perms;
76 + files_search_tmp($1)
77 + rw_files_pattern($1, initrc_tmp_t, initrc_tmp_t)
78 ')
79
80 ########################################
Report Message
Find on MARC Find on Google Groups