[selinux-policy: 1864/3172] trunk: handle early boot on debian, for /dev labeling.
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 21:46:12 UTC 2010
commit 1483be1fe544490ae691fbcbd09ef6058a1c9958
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Mon Nov 26 20:22:17 2007 +0000
trunk: handle early boot on debian, for /dev labeling.
policy/modules/system/selinuxutil.te | 9 ++++++++-
1 files changed, 8 insertions(+), 1 deletions(-)
---
diff --git a/policy/modules/system/selinuxutil.te b/policy/modules/system/selinuxutil.te
index 0bab583..17f5d98 100644
--- a/policy/modules/system/selinuxutil.te
+++ b/policy/modules/system/selinuxutil.te
@@ -1,5 +1,5 @@
-policy_module(selinuxutil,1.7.4)
+policy_module(selinuxutil,1.7.5)
gen_require(`
bool secure_mode;
@@ -559,6 +559,13 @@ userdom_use_all_users_fds(setfiles_t)
# for config files in a home directory
userdom_read_all_users_home_content_files(setfiles_t)
+ifdef(`distro_debian',`
+ # udev tmpfs is populated with static device nodes
+ # and then relabeled afterwards; thus
+ # /dev/console has the tmpfs type
+ fs_rw_tmpfs_chr_files(setfiles_t)
+')
+
ifdef(`distro_redhat', `
fs_rw_tmpfs_chr_files(setfiles_t)
fs_rw_tmpfs_blk_files(setfiles_t)
More information about the scm-commits
mailing list