commit: a94131f569e9e185a3f08a774bb6ba62c5e90bd1
Author: Chris PeBenito <pebenito <AT> ieee <DOT> org>
AuthorDate: Fri Feb 24 01:16:40 2017 +0000
Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Sat Feb 25 14:22:23 2017 +0000
URL:
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=a94131f5
Fix CI errors.
policy/modules/system/logging.te | 2 --
policy/modules/system/systemd.if | 2 +-
2 files changed, 1 insertion(+), 3 deletions(-)
diff --git a/policy/modules/system/logging.te b/policy/modules/system/logging.te
index 9a6c714a..54436756 100644
--- a/policy/modules/system/logging.te
+++ b/policy/modules/system/logging.te
@@ -515,8 +515,6 @@ ifdef(`init_systemd',`
allow syslogd_t self:capability2 audit_read;
allow syslogd_t self:capability { chown setgid setuid sys_ptrace };
allow syslogd_t self:netlink_audit_socket { getattr getopt read setopt
write };
- allow syslogd_t init_var_run_t:file { read write create open };
- allow syslogd_t var_run_t:dir create;
kernel_getattr_dgram_sockets(syslogd_t)
kernel_read_ring_buffer(syslogd_t)
diff --git a/policy/modules/system/systemd.if b/policy/modules/system/systemd.if
index 69ee084f..70047dbe 100644
--- a/policy/modules/system/systemd.if
+++ b/policy/modules/system/systemd.if
@@ -248,7 +248,7 @@ interface(`systemd_manage_all_units',`
#
interface(`systemd_manage_journal_files',`
gen_require(`
- type systemd_logind_t;
+ type systemd_journal_t;
')
manage_dirs_pattern($1, systemd_journal_t, systemd_journal_t)
