setrans: mcstransd reads filesystems file in /proc

Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
2013-11-09 10:44:47 +01:00 · 2013-11-09 10:44:47 +01:00 · e7b86e07f2
parent a0e88de5e5
commit e7b86e07f2
1 changed files with 1 additions and 1 deletions
--- a/policy/modules/system/setrans.te
+++ b/policy/modules/system/setrans.te
@ -50,7 +50,7 @@ manage_sock_files_pattern(setrans_t, setrans_var_run_t, setrans_var_run_t)
 files_pid_filetrans(setrans_t, setrans_var_run_t, { file dir })
 kernel_read_kernel_sysctls(setrans_t)
-kernel_read_proc_symlinks(setrans_t)
+kernel_read_system_state(setrans_t)
 # allow performing getpidcon() on all processes
 domain_read_all_domains_state(setrans_t)