[selinux-policy: 3065/3172] Use ps_process_pattern to read state.
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 23:32:41 UTC 2010
commit 6cd6ed35bd76307bd12e7f8c6e802ac2b807550f
Author: Dominick Grift <domg472 at gmail.com>
Date: Mon Sep 20 21:07:33 2010 +0200
Use ps_process_pattern to read state.
policy/modules/system/init.if | 7 +------
1 files changed, 1 insertions(+), 6 deletions(-)
---
diff --git a/policy/modules/system/init.if b/policy/modules/system/init.if
index 447aaec..666a58f 100644
--- a/policy/modules/system/init.if
+++ b/policy/modules/system/init.if
@@ -1207,12 +1207,7 @@ interface(`init_read_script_state',`
')
kernel_search_proc($1)
- read_files_pattern($1, initrc_t, initrc_t)
- read_lnk_files_pattern($1, initrc_t, initrc_t)
- list_dirs_pattern($1, initrc_t, initrc_t)
-
- # should move this to separate interface
- allow $1 initrc_t:process getattr;
+ ps_process_pattern($1, initrc_t)
')
########################################
More information about the scm-commits
mailing list