[selinux-policy: 1622/3172] gentoo integrated run_init rules in wrong build option.
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 21:25:20 UTC 2010
commit e45324d1ee9659e5d05d96d40764599c3db66348
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Sun Oct 15 00:23:06 2006 +0000
gentoo integrated run_init rules in wrong build option.
policy/modules/system/init.te | 8 ++++----
1 files changed, 4 insertions(+), 4 deletions(-)
---
diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te
index 6192b8e..1a86fe2 100644
--- a/policy/modules/system/init.te
+++ b/policy/modules/system/init.te
@@ -410,6 +410,10 @@ ifdef(`distro_gentoo',`
# init scripts touch this
clock_dontaudit_write_adjtime(initrc_t)
+ # for integrated run_init to read run_init_type.
+ # happens during boot (/sbin/rc execs init scripts)
+ seutil_read_default_contexts(initrc_t)
+
optional_policy(`
arpwatch_manage_data_files(initrc_t)
')
@@ -456,10 +460,6 @@ ifdef(`distro_redhat',`
miscfiles_read_fonts(initrc_t)
miscfiles_read_hwdata(initrc_t)
- # for integrated run_init to read run_init_type.
- # happens during boot (/sbin/rc execs init scripts)
- seutil_read_default_contexts(initrc_t)
-
optional_policy(`
bind_manage_config_dirs(initrc_t)
bind_write_config(initrc_t)
More information about the scm-commits
mailing list