From 80d5e02c81f9a821466287f2ad23c5a18c9b06ba Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Tue, 21 Aug 2007 19:03:34 +0000 Subject: [PATCH] trunk: Files and radvd updates from Stefan Schulze Frielinghaus. --- Changelog | 1 + policy/modules/kernel/files.fc | 4 ++++ policy/modules/kernel/files.te | 2 +- policy/modules/services/radvd.te | 4 ++-- 4 files changed, 8 insertions(+), 3 deletions(-) diff --git a/Changelog b/Changelog index 951b549e0..d5d9fe298 100644 --- a/Changelog +++ b/Changelog @@ -1,3 +1,4 @@ +- Files and radvd updates from Stefan Schulze Frielinghaus. - Deprecate mls_file_write_down() and mls_file_read_up(), replaced with mls_write_all_levels() and mls_read_all_levels(), for consistency. - Add make kernel and init ranged interfaces pass the range transition MLS diff --git a/policy/modules/kernel/files.fc b/policy/modules/kernel/files.fc index 0aa22666b..4484def26 100644 --- a/policy/modules/kernel/files.fc +++ b/policy/modules/kernel/files.fc @@ -249,3 +249,7 @@ HOME_ROOT/lost\+found/.* <> /var/tmp/lost\+found -d gen_context(system_u:object_r:lost_found_t,mls_systemhigh) /var/tmp/lost\+found/.* <> /var/tmp/vi\.recover -d gen_context(system_u:object_r:tmp_t,s0) + +ifdef(`distro_debian',` +/var/run/motd -- gen_context(system_u:object_r:etc_runtime_t,s0) +') diff --git a/policy/modules/kernel/files.te b/policy/modules/kernel/files.te index 57fb30789..d66caedf3 100644 --- a/policy/modules/kernel/files.te +++ b/policy/modules/kernel/files.te @@ -1,5 +1,5 @@ -policy_module(files,1.6.0) +policy_module(files,1.6.1) ######################################## # diff --git a/policy/modules/services/radvd.te b/policy/modules/services/radvd.te index 3aa7d79da..8d4cbf939 100644 --- a/policy/modules/services/radvd.te +++ b/policy/modules/services/radvd.te @@ -1,5 +1,5 @@ -policy_module(radvd,1.4.0) +policy_module(radvd,1.4.1) ######################################## # @@ -34,7 +34,7 @@ manage_files_pattern(radvd_t,radvd_var_run_t,radvd_var_run_t) files_pid_filetrans(radvd_t,radvd_var_run_t,file) kernel_read_kernel_sysctls(radvd_t) -kernel_read_net_sysctls(radvd_t) +kernel_rw_net_sysctls(radvd_t) kernel_read_network_state(radvd_t) kernel_read_system_state(radvd_t)