The kernel domain should be able to mounton runtime directories

during switch_root, otherwise parts of the boot process might fail on some systems (for example, the udev daemon). Signed-off-by: Guido Trentalancia <guido@trentalancia.com> --- policy/modules/kernel/kernel.te | 1 + 1 file changed, 1 insertion(+)
2023-08-23 17:49:05 +02:00 · 2023-08-23 17:49:05 +02:00 · 718139ca87
commit 718139ca87
parent f3f761c4a8
1 changed files with 1 additions and 0 deletions
--- a/policy/modules/kernel/kernel.te
+++ b/policy/modules/kernel/kernel.te
@ -360,6 +360,7 @@ files_delete_root_symlinks(kernel_t)
 files_delete_root_chr_files(kernel_t)
 files_list_root(kernel_t)
 files_list_etc(kernel_t)
+files_mounton_runtime_dirs(kernel_t)
 files_getattr_etc_runtime_dirs(kernel_t)
 files_mounton_etc_runtime_dirs(kernel_t)
 files_list_home(kernel_t)