RepoMirrors
/
selinux-refpolicy
mirror of https://github.com/SELinuxProject/refpolicy
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
selinux-refpolicy/policy/modules
History
Dave Sugar ca4282102b Add interface to read/write /dev/ipmi 
/dev/ipmi is labeled, but no interfaces exist to grant access to the device.
Adding interface for read/write access, I'm not sure of read-only access is usefull. ipmitool seems to only read and write
type=AVC msg=audit(1581618155.319:786): avc:  denied  { read write } for pid=4498 comm="ipmitool" name="ipmi0" dev="devtmpfs" ino=10460 scontext=system_u:system_r:ipmi_t:s0 tcontext=system_u:object_r:ipmi_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1581618155.319:786): avc:  denied  { open } for pid=4498 comm="ipmitool" path="/dev/ipmi0" dev="devtmpfs" ino=10460 scontext=system_u:system_r:ipmi_t:s0 tcontext=system_u:object_r:ipmi_device_t:s0 tclass=chr_file permissive=1
type=AVC msg=audit(1581618155.320:787): avc:  denied  { ioctl } for pid=4498 comm="ipmitool" path="/dev/ipmi0" dev="devtmpfs" ino=10460 ioctlcmd=6910 scontext=system_u:system_r:ipmi_t:s0 tcontext=system_u:object_r:ipmi_device_t:s0 tclass=chr_file permissive=1
 		2020-03-10 14:26:18 -04:00
..
admin terminal, portage: Module version bump. 2020-03-01 14:54:45 -05:00
apps Bump module versions for release. 2020-02-29 16:54:39 -05:00
kernel Add interface to read/write /dev/ipmi 2020-03-10 14:26:18 -04:00
roles corenetwork, sysadm, sysnetwork: Module version bump. 2020-03-08 15:52:56 -04:00
services Merge pull request #137 from bigon/aptcacher 2020-03-08 15:44:52 -04:00
system corenetwork, sysadm, sysnetwork: Module version bump. 2020-03-08 15:52:56 -04:00