[selinux-policy: 1459/3172] dontaudit just the kernel fd use, the others may indicate problems for other reasons.
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 21:11:29 UTC 2010
commit 263721b9a4b8ca2156c90d5ae92da97b0ec9c8b5
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Fri May 19 20:02:41 2006 +0000
dontaudit just the kernel fd use, the others may indicate problems for other reasons.
refpolicy/policy/modules/system/init.if | 12 +++---------
1 files changed, 3 insertions(+), 9 deletions(-)
---
diff --git a/refpolicy/policy/modules/system/init.if b/refpolicy/policy/modules/system/init.if
index 2b54658..0b2dd5a 100644
--- a/refpolicy/policy/modules/system/init.if
+++ b/refpolicy/policy/modules/system/init.if
@@ -37,9 +37,7 @@ interface(`init_domain',`
# RHEL4 systems seem to have a stray
# fds open from the initrd
ifdef(`distro_rhel4',`
- kernel_dontaudit_use_fd($1)
- storage_dontaudit_read_fixed_disk($1)
- files_dontaudit_read_root_file($1)
+ kernel_dontaudit_use_fds($1)
')
')
')
@@ -89,9 +87,7 @@ interface(`init_daemon_domain',`
# RHEL4 systems seem to have a stray
# fds open from the initrd
ifdef(`distro_rhel4',`
- kernel_dontaudit_use_fd($1)
- storage_dontaudit_read_fixed_disk($1)
- files_dontaudit_read_root_file($1)
+ kernel_dontaudit_use_fds($1)
')
')
@@ -166,9 +162,7 @@ interface(`init_system_domain',`
# RHEL4 systems seem to have a stray
# fds open from the initrd
ifdef(`distro_rhel4',`
- kernel_dontaudit_use_fd($1)
- storage_dontaudit_read_fixed_disk($1)
- files_dontaudit_read_root_file($1)
+ kernel_dontaudit_use_fds($1)
')
')
')
More information about the scm-commits
mailing list