Merge pull request #93 from fishilico/systemd-read-netlink_kobject_uevent_socket

2019-09-07 16:40:27 -04:00 · 2019-09-07 16:40:27 -04:00 · b340b15b8b
commit b340b15b8b
parent 1dea588464 bfcf3918d8
1 changed files with 1 additions and 1 deletions
--- a/policy/modules/system/systemd.te
+++ b/policy/modules/system/systemd.te
@ -1157,7 +1157,7 @@ dontaudit systemd_user_session_type self:capability dac_override;
 allow systemd_user_session_type self:process setfscreate;
 allow systemd_user_session_type self:udp_socket create_socket_perms;
 allow systemd_user_session_type self:unix_stream_socket create_stream_socket_perms;
-allow systemd_user_session_type self:netlink_kobject_uevent_socket { bind create getattr setopt };
+allow systemd_user_session_type self:netlink_kobject_uevent_socket { bind create getattr read setopt };

 allow systemd_user_session_type systemd_user_runtime_t:dir manage_dir_perms;
 allow systemd_user_session_type systemd_user_runtime_t:sock_file { create write };