Gentoo Archives: gentoo-commits

From:	Sven Vermeulen <sven.vermeulen@××××××.be>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/system/
Date:	Tue, 10 Jul 2012 17:22:14
Message-Id:	`1341938326.e7b4aa6923f78af230e19c8590232761d8c1f099.SwifT@gentoo`

1	commit: e7b4aa6923f78af230e19c8590232761d8c1f099
2	Author: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
3	AuthorDate: Tue Jul 10 16:38:46 2012 +0000
4	Commit: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
5	CommitDate: Tue Jul 10 16:38:46 2012 +0000
6	URL: http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=e7b4aa69
7
8	Improvements on init/udev /run support
9
10	---
11	policy/modules/system/init.te \| 1 +
12	policy/modules/system/udev.if \| 21 +++++++++++++++++++++
13	2 files changed, 22 insertions(+), 0 deletions(-)
14
15	diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te
16	index 2534150..76aad7a 100644
17	--- a/policy/modules/system/init.te
18	+++ b/policy/modules/system/init.te
19	@@ -851,6 +851,7 @@ optional_policy(`
20	')
21
22	optional_policy(`
23	+ udev_create_db_dirs(initrc_t)
24	udev_dontaudit_getattr_netlink_kobject_uevent_sockets(initrc_t)
25	udev_dontaudit_getattr_unix_stream_sockets(initrc_t)
26	udev_generic_pid_filetrans_run_dirs(initrc_t, "udev")
27
28	diff --git a/policy/modules/system/udev.if b/policy/modules/system/udev.if
29	index 5469742..cff9ce6 100644
30	--- a/policy/modules/system/udev.if
31	+++ b/policy/modules/system/udev.if
32	@@ -276,6 +276,27 @@ interface(`udev_rw_db',`
33
34	########################################
35	## <summary>
36	+## Create udev database directories
37	+## </summary>
38	+## <param name="domain">
39	+## <summary>
40	+## Domain allowed access.
41	+## </summary>
42	+## </param>
43	+#
44	+interface(`udev_create_db_dirs',`
45	+ gen_require(`
46	+ type udev_tbl_t;
47	+ type udev_var_run_t;
48	+ ')
49	+
50	+ create_dirs_pattern($1, udev_var_run_t, udev_tbl_t)
51	+')
52	+
53	+
54	+
55	+########################################
56	+## <summary>
57	## Write dirs in /var/run/udev with the udev_tbl_t (udev database) file type
58	## </summary>
59	## <param name="domain">

Report Message

Find on MARC Find on Google Groups