From: sven.vermeulen@siphos.be (Sven Vermeulen)
Date: Thu, 12 Jul 2012 21:24:45 +0200
Subject: [refpolicy] [PATCH v5 5/5] Allow init scripts to create and manage
	(udev) /run location
In-Reply-To: <1342121085-2765-1-git-send-email-sven.vermeulen@siphos.be>
References: <1342121085-2765-1-git-send-email-sven.vermeulen@siphos.be>
Message-ID: <1342121085-2765-6-git-send-email-sven.vermeulen@siphos.be>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

With udev now using /run for its data, the init script responsible for preparing
the environment to start up udev needs to be able to setup this location as
well.

We here allow init scripts to create the /run/udev location (transitioning to
udev_var_run_t) and manage this content (creating the /run/udev subdirectories).

Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
---
 policy/modules/system/init.te |    2 ++
 1 files changed, 2 insertions(+), 0 deletions(-)

diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te
index 0dbd708..7c37287 100644
--- a/policy/modules/system/init.te
+++ b/policy/modules/system/init.te
@@ -829,7 +829,9 @@ optional_policy(`
 
 optional_policy(`
 	udev_rw_db(initrc_t)
+	udev_generic_pid_filetrans_run_dirs(initrc_t, "udev")
 	udev_manage_pid_files(initrc_t)
+	udev_manage_pid_dirs(initrc_t)
 	udev_manage_rules_files(initrc_t)
 ')
 
-- 
1.7.8.6