[selinux-policy: 849/3172] add default_t read back
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 20:18:29 UTC 2010
commit 7eec657c86ff98e2156a90352ab53391cb3863c1
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Tue Oct 25 18:00:42 2005 +0000
add default_t read back
refpolicy/policy/modules/kernel/kernel.te | 8 ++++++++
1 files changed, 8 insertions(+), 0 deletions(-)
---
diff --git a/refpolicy/policy/modules/kernel/kernel.te b/refpolicy/policy/modules/kernel/kernel.te
index cf06c86..b444765 100644
--- a/refpolicy/policy/modules/kernel/kernel.te
+++ b/refpolicy/policy/modules/kernel/kernel.te
@@ -221,6 +221,14 @@ ifdef(`targeted_policy',`
unconfined_domain_template(kernel_t)
')
+tunable_policy(`read_default_t',`
+ files_list_default(kernel_t)
+ files_read_default_files(kernel_t)
+ files_read_default_symlinks(kernel_t)
+ files_read_default_sockets(kernel_t)
+ files_read_default_pipes(kernel_t)
+')
+
optional_policy(`nis.te',`
nis_use_ypbind(kernel_t)
')
More information about the scm-commits
mailing list