commit: af8e8b50f5255b447e534a740abe4bc2e5ccc501 Author: Chris PeBenito <pebenito <AT> ieee <DOT> org> AuthorDate: Sun Mar 17 20:25:28 2019 +0000 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org> CommitDate: Mon Mar 25 10:05:25 2019 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=af8e8b50
udev: Move one line and remove a redundant line. Signed-off-by: Chris PeBenito <pebenito <AT> ieee.org> Signed-off-by: Jason Zaman <jason <AT> perfinion.com> policy/modules/system/udev.te | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/policy/modules/system/udev.te b/policy/modules/system/udev.te index 5e24d949..e6c64026 100644 --- a/policy/modules/system/udev.te +++ b/policy/modules/system/udev.te @@ -420,11 +420,12 @@ ifdef(`distro_gentoo',` allow udevadm_t self:netlink_kobject_uevent_socket create_socket_perms; allow udevadm_t self:unix_stream_socket create_socket_perms; +stream_connect_pattern(udevadm_t, udev_var_run_t, udev_var_run_t, udev_t) + delete_dirs_pattern(udevadm_t, udev_var_run_t, udev_var_run_t) delete_files_pattern(udevadm_t, udev_var_run_t, udev_var_run_t) delete_lnk_files_pattern(udevadm_t, udev_var_run_t, udev_var_run_t) list_dirs_pattern(udevadm_t, udev_var_run_t, udev_var_run_t) -stream_connect_pattern(udevadm_t, udev_var_run_t, udev_var_run_t, udev_t) dev_rw_sysfs(udevadm_t) dev_read_urand(udevadm_t) @@ -437,7 +438,5 @@ init_read_state(udevadm_t) kernel_read_system_state(udevadm_t) -libs_use_ld_so(udevadm_t) - seutil_read_file_contexts(udevadm_t)
