From: sven.vermeulen@siphos.be (Sven Vermeulen) Date: Wed, 27 Jun 2012 23:52:13 +0200 Subject: [refpolicy] [PATCH 6/6] Allow init scripts to create and manage (udev) /run location In-Reply-To: <1340833933-27811-1-git-send-email-sven.vermeulen@siphos.be> References: <1340833933-27811-1-git-send-email-sven.vermeulen@siphos.be> Message-ID: <1340833933-27811-7-git-send-email-sven.vermeulen@siphos.be> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com With udev now using /run for its data, the init script responsible for preparing the environment to start up udev needs to be able to setup this location as well. Signed-off-by: Sven Vermeulen --- policy/modules/system/init.te | 3 +++ 1 files changed, 3 insertions(+), 0 deletions(-) diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te index 8667e14..c544eea 100644 --- a/policy/modules/system/init.te +++ b/policy/modules/system/init.te @@ -276,6 +276,7 @@ kernel_rw_all_sysctls(initrc_t) kernel_dontaudit_getattr_message_if(initrc_t) files_create_lock_dirs(initrc_t) +files_create_pid_dirs(initrc_t) files_pid_filetrans_lock_dir(initrc_t, "lock") files_read_kernel_symbol_table(initrc_t) files_setattr_lock_dirs(initrc_t) @@ -828,7 +829,9 @@ optional_policy(` optional_policy(` udev_rw_db(initrc_t) + udev_pid_filetrans_run_dirs(initrc_t, "udev") udev_manage_pid_files(initrc_t) + udev_manage_pid_dirs(initrc_t) udev_manage_rules_files(initrc_t) ') -- 1.7.3.4