[selinux-policy: 64/3172] missed that sysctl_dev is a dir too
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 19:10:43 UTC 2010
commit b5860610b400ebaf40c8fbbef8ae4a467e239edb
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Thu Apr 28 15:52:42 2005 +0000
missed that sysctl_dev is a dir too
refpolicy/policy/modules/kernel/kernel.if | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
---
diff --git a/refpolicy/policy/modules/kernel/kernel.if b/refpolicy/policy/modules/kernel/kernel.if
index 0ed2dc5..77f4037 100644
--- a/refpolicy/policy/modules/kernel/kernel.if
+++ b/refpolicy/policy/modules/kernel/kernel.if
@@ -497,6 +497,7 @@ define(`kernel_read_device_sysctl',`
requires_block_template(kernel_read_device_sysctl_depend,$2)
allow $1 proc_t:dir search;
allow $1 sysctl_t:dir { getattr search read };
+allow $1 sysctl_dev_t:dir { getattr search read };
allow $1 sysctl_dev_t:file { getattr read };
')
More information about the scm-commits
mailing list