From: dominick.grift@gmail.com (Dominick Grift)
Date: Sat, 14 Dec 2013 19:24:50 +0100
Subject: [refpolicy] [PATCH 28/39] init: startpar (initrc_t) gets
 attributes of /dev/dm-0 (device_t) early on boot,
 soon later the node context is properly reset (debian only) init: startpar
 (initrc_t) gets attributes of /proc/kcore file
In-Reply-To: <1383990320-3340-28-git-send-email-dominick.grift@gmail.com>
References: <1383990320-3340-1-git-send-email-dominick.grift@gmail.com>
	<1383990320-3340-28-git-send-email-dominick.grift@gmail.com>
Message-ID: <1387045490.18689.126.camel@d30>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On Sat, 2013-11-09 at 10:45 +0100, Dominick Grift wrote:

Please merge this patch asap.

Current refpolicy does not build without this patch
This was a rebase mistake by me.

> Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
> ---
>  policy/modules/system/init.te | 5 ++++-
>  1 file changed, 4 insertions(+), 1 deletion(-)
> 
> diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te
> index 5de913e..4691035 100644
> --- a/policy/modules/system/init.te
> +++ b/policy/modules/system/init.te
> @@ -180,7 +180,7 @@ seutil_read_config(init_t)
>  miscfiles_read_localization(init_t)
>  
>  ifdef(`distro_debian',`
> -fs_tmpfs_filetrans(init_t, initctl_t, fifo, "initctl")
> +fs_tmpfs_filetrans(init_t, initctl_t, fifo_file, "initctl")
>  fs_tmpfs_filetrans(init_t, initrc_var_run_t, file, "utmp")
>  ')
>  
> @@ -437,6 +437,9 @@ userdom_read_user_home_content_files(initrc_t)
>  userdom_use_user_terminals(initrc_t)
>  
>  ifdef(`distro_debian',`
> +	kernel_getattr_core_if(initrc_t)
> +
> +	dev_getattr_generic_blk_files(initrc_t)
>  	dev_setattr_generic_dirs(initrc_t)
>  
>  	fs_tmpfs_filetrans(initrc_t, initrc_var_run_t, dir)