udev: various fixes
Mostly mdraid stuff and a few dontaudits. Signed-off-by: Kenton Groombridge <me@concord.sh>
This commit is contained in:
parent
a6df5e653c
commit
c46bbef5f7
|
@ -124,6 +124,9 @@ files_mmap_read_kernel_modules(udev_t)
|
||||||
files_exec_etc_files(udev_t)
|
files_exec_etc_files(udev_t)
|
||||||
files_getattr_generic_locks(udev_t)
|
files_getattr_generic_locks(udev_t)
|
||||||
files_search_mnt(udev_t)
|
files_search_mnt(udev_t)
|
||||||
|
files_dontaudit_getattr_default_files(udev_t)
|
||||||
|
files_dontaudit_getattr_lost_found_dirs(udev_t)
|
||||||
|
files_dontaudit_getattr_tmp_dirs(udev_t)
|
||||||
|
|
||||||
fs_getattr_all_fs(udev_t)
|
fs_getattr_all_fs(udev_t)
|
||||||
fs_list_inotifyfs(udev_t)
|
fs_list_inotifyfs(udev_t)
|
||||||
|
@ -145,6 +148,7 @@ selinux_compute_access_vector(udev_t)
|
||||||
selinux_compute_create_context(udev_t)
|
selinux_compute_create_context(udev_t)
|
||||||
selinux_compute_relabel_context(udev_t)
|
selinux_compute_relabel_context(udev_t)
|
||||||
selinux_compute_user_contexts(udev_t)
|
selinux_compute_user_contexts(udev_t)
|
||||||
|
selinux_use_status_page(udev_t)
|
||||||
|
|
||||||
storage_watch_fixed_disk(udev_t)
|
storage_watch_fixed_disk(udev_t)
|
||||||
|
|
||||||
|
@ -329,6 +333,7 @@ optional_policy(`
|
||||||
|
|
||||||
optional_policy(`
|
optional_policy(`
|
||||||
raid_domtrans_mdadm(udev_t)
|
raid_domtrans_mdadm(udev_t)
|
||||||
|
raid_read_mdadm_runtime_files(udev_t)
|
||||||
')
|
')
|
||||||
|
|
||||||
optional_policy(`
|
optional_policy(`
|
||||||
|
|
Loading…
Reference in New Issue