[selinux-policy: 2978/3172] Use stream_connect_pattern.
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 23:25:06 UTC 2010
commit 2e2a24e07d902d3accdc25668805b69e64b45171
Author: Dominick Grift <domg472 at gmail.com>
Date: Wed Sep 15 21:30:35 2010 +0200
Use stream_connect_pattern.
Signed-off-by: Dominick Grift <domg472 at gmail.com>
policy/modules/services/zebra.if | 3 +--
1 files changed, 1 insertions(+), 2 deletions(-)
---
diff --git a/policy/modules/services/zebra.if b/policy/modules/services/zebra.if
index 6b87605..5860687 100644
--- a/policy/modules/services/zebra.if
+++ b/policy/modules/services/zebra.if
@@ -38,8 +38,7 @@ interface(`zebra_stream_connect',`
')
files_search_pids($1)
- allow $1 zebra_var_run_t:sock_file write;
- allow $1 zebra_t:unix_stream_socket connectto;
+ stream_connect_pattern($1, zebra_var_run_t, zebra_var_run_t, zebra_t)
')
########################################
More information about the scm-commits
mailing list