[node-patches] Change in ovirt-node[ovirt-3.5]: semodule: syslogd_t tmpfs_t:file
dougsland at redhat.com
dougsland at redhat.com
Tue Aug 11 15:42:21 UTC 2015
Douglas Schilling Landgraf has uploaded a new change for review.
Change subject: semodule: syslogd_t tmpfs_t:file
......................................................................
semodule: syslogd_t tmpfs_t:file
avoid open avc:
type=AVC msg=audit(1428351923.989:51): avc: denied { open } for pid=1929 comm="rsyslogd" path="/etc/resolv.conf"
dev="tmpfs" ino=18079 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=file
Change-Id: I20cb72b29dd39a2eddc98abf53d1e74c0ba5299e
Signed-off-by: Douglas Schilling Landgraf <dougsland at redhat.com>
---
M semodule/ovirt.te.in
1 file changed, 1 insertion(+), 1 deletion(-)
git pull ssh://gerrit.ovirt.org:29418/ovirt-node refs/changes/17/44717/1
diff --git a/semodule/ovirt.te.in b/semodule/ovirt.te.in
index 5d81534..b7604b4 100644
--- a/semodule/ovirt.te.in
+++ b/semodule/ovirt.te.in
@@ -245,7 +245,7 @@
#============= syslogd_t ==============
allow syslogd_t var_lib_t:file { write getattr open };
-allow syslogd_t tmpfs_t:file read;
+allow syslogd_t tmpfs_t:file { read open };
#============= sysstat_t ==============
--
To view, visit https://gerrit.ovirt.org/44717
To unsubscribe, visit https://gerrit.ovirt.org/settings
Gerrit-MessageType: newchange
Gerrit-Change-Id: I20cb72b29dd39a2eddc98abf53d1e74c0ba5299e
Gerrit-PatchSet: 1
Gerrit-Project: ovirt-node
Gerrit-Branch: ovirt-3.5
Gerrit-Owner: Douglas Schilling Landgraf <dougsland at redhat.com>
More information about the node-patches
mailing list