[node-patches] Change in ovirt-node[master]: ovirt.te: sshd_t add device_t and ovirt_t
dougsland at redhat.com
dougsland at redhat.com
Tue Sep 2 17:34:18 UTC 2014
Douglas Schilling Landgraf has uploaded a new change for review.
Change subject: ovirt.te: sshd_t add device_t and ovirt_t
......................................................................
ovirt.te: sshd_t add device_t and ovirt_t
This patch adds:
- device_t:sock_file write
- ovirt_t:unix_dgram_socket sendto
Change-Id: I071fdceb342215c0140a79a2c1d83a32cf595a54
Signed-off-by: Douglas Schilling Landgraf <dougsland at redhat.com>
---
M semodule/ovirt.te.in
1 file changed, 2 insertions(+), 1 deletion(-)
git pull ssh://gerrit.ovirt.org:29418/ovirt-node refs/changes/30/32330/1
diff --git a/semodule/ovirt.te.in b/semodule/ovirt.te.in
index 1264da2..1266b5e 100644
--- a/semodule/ovirt.te.in
+++ b/semodule/ovirt.te.in
@@ -135,7 +135,8 @@
#============= sshd_t ==============
allow sshd_t var_log_t:file { read open write };
-
+allow sshd_t device_t:sock_file write;
+allow sshd_t ovirt_t:unix_dgram_socket sendto;
#============= svirt_t ==============
allow svirt_t initrc_t:unix_stream_socket connectto;
--
To view, visit http://gerrit.ovirt.org/32330
To unsubscribe, visit http://gerrit.ovirt.org/settings
Gerrit-MessageType: newchange
Gerrit-Change-Id: I071fdceb342215c0140a79a2c1d83a32cf595a54
Gerrit-PatchSet: 1
Gerrit-Project: ovirt-node
Gerrit-Branch: master
Gerrit-Owner: Douglas Schilling Landgraf <dougsland at redhat.com>
More information about the node-patches
mailing list