Fix missing requires in /var/run and /var/lock symlink patch.

This commit is contained in:
Chris PeBenito 2011-07-18 14:12:07 -04:00
parent a29c7b86e1
commit b594647caf
1 changed files with 6 additions and 4 deletions

View File

@ -5394,7 +5394,7 @@ interface(`files_rw_lock_dirs',`
interface(`files_relabel_all_lock_dirs',` interface(`files_relabel_all_lock_dirs',`
gen_require(` gen_require(`
attribute lockfile; attribute lockfile;
type var_t; type var_t, var_lock_t;
') ')
allow $1 var_t:dir search_dir_perms; allow $1 var_t:dir search_dir_perms;
@ -5478,7 +5478,7 @@ interface(`files_manage_generic_locks',`
interface(`files_delete_all_locks',` interface(`files_delete_all_locks',`
gen_require(` gen_require(`
attribute lockfile; attribute lockfile;
type var_t; type var_t, var_lock_t;
') ')
allow $1 var_t:dir search_dir_perms; allow $1 var_t:dir search_dir_perms;
@ -5792,6 +5792,7 @@ interface(`files_rw_generic_pids',`
interface(`files_dontaudit_getattr_all_pids',` interface(`files_dontaudit_getattr_all_pids',`
gen_require(` gen_require(`
attribute pidfile; attribute pidfile;
type var_run_t;
') ')
dontaudit $1 var_run_t:lnk_file read_lnk_file_perms; dontaudit $1 var_run_t:lnk_file read_lnk_file_perms;
@ -5830,6 +5831,7 @@ interface(`files_dontaudit_write_all_pids',`
interface(`files_dontaudit_ioctl_all_pids',` interface(`files_dontaudit_ioctl_all_pids',`
gen_require(` gen_require(`
attribute pidfile; attribute pidfile;
type var_run_t;
') ')
dontaudit $1 var_run_t:lnk_file read_lnk_file_perms; dontaudit $1 var_run_t:lnk_file read_lnk_file_perms;
@ -5850,7 +5852,7 @@ interface(`files_dontaudit_ioctl_all_pids',`
interface(`files_read_all_pids',` interface(`files_read_all_pids',`
gen_require(` gen_require(`
attribute pidfile; attribute pidfile;
type var_t; type var_t, var_run_t;
') ')
allow $1 var_run_t:lnk_file read_lnk_file_perms; allow $1 var_run_t:lnk_file read_lnk_file_perms;
@ -5916,7 +5918,7 @@ interface(`files_delete_all_pids',`
interface(`files_delete_all_pid_dirs',` interface(`files_delete_all_pid_dirs',`
gen_require(` gen_require(`
attribute pidfile; attribute pidfile;
type var_t; type var_t, var_run_t;
') ')
allow $1 var_t:dir search_dir_perms; allow $1 var_t:dir search_dir_perms;