From: bigon@debian.org (Laurent Bigonville)
Date: Tue, 15 Jan 2013 11:23:39 +0100
Subject: [refpolicy] [PATCH v2 07/13] Label var_lock_t as a mountpoint
In-Reply-To: <1358026351-12955-8-git-send-email-bigon@debian.org>
References: <1358026351-12955-8-git-send-email-bigon@debian.org>
Message-ID: <1358245419-24403-1-git-send-email-bigon@debian.org>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

From: Laurent Bigonville <bigon@bigon.be>

In Debian, /var/lock is a symlink to /var/run/lock which is a tmpfs
mount.
---
 policy/modules/kernel/files.te |    1 +
 1 file changed, 1 insertion(+)

diff --git a/policy/modules/kernel/files.te b/policy/modules/kernel/files.te
index 148d87a..4a59c76 100644
--- a/policy/modules/kernel/files.te
+++ b/policy/modules/kernel/files.te
@@ -173,6 +173,7 @@ files_mountpoint(var_lib_t)
 #
 type var_lock_t;
 files_lock_file(var_lock_t)
+files_mountpoint(var_lock_t)
 
 #
 # var_run_t is the type of /var/run, usually
-- 
1.7.10.4