[selinux-policy: 2199/3172] gentoo init script system uses tmpfs for state data
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 22:15:18 UTC 2010
commit cfdbf366cb160c418e39f1edcea5a6c716561179
Author: Chris PeBenito <pebenito at gentoo.org>
Date: Thu Jul 30 08:33:43 2009 -0400
gentoo init script system uses tmpfs for state data
policy/modules/system/init.te | 8 +++-----
1 files changed, 3 insertions(+), 5 deletions(-)
---
diff --git a/policy/modules/system/init.te b/policy/modules/system/init.te
index 0de9dd4..4c2c71d 100644
--- a/policy/modules/system/init.te
+++ b/policy/modules/system/init.te
@@ -1,5 +1,5 @@
-policy_module(init, 1.13.2)
+policy_module(init, 1.13.3)
gen_require(`
class passwd rootok;
@@ -417,10 +417,8 @@ ifdef(`distro_gentoo',`
dev_create_generic_dirs(initrc_t)
dev_delete_generic_dirs(initrc_t)
- # needed until baselayout is fixed to have the
- # restorecon on /dev to again be immediately after
- # mounting tmpfs on /dev
- fs_tmpfs_filetrans(initrc_t, initrc_state_t, file)
+ # openrc uses tmpfs for its state data
+ fs_tmpfs_filetrans(initrc_t, initrc_state_t, { dir file fifo_file lnk_file })
# init scripts touch this
clock_dontaudit_write_adjtime(initrc_t)
More information about the scm-commits
mailing list