commit: d881de39c19931dc670b845ec514d17fab928647
Author: Chris PeBenito <cpebenito <AT> tresys <DOT> com>
AuthorDate: Fri Sep 12 18:25:01 2014 +0000
Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org>
CommitDate: Sun Sep 21 14:02:14 2014 +0000
URL:
http://sources.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=d881de39
/dev/log symlinks are not labeled devlog_t.
Drop rule; if /dev/log is a symlink, it should be device_t.
---
policy/modules/system/logging.if | 1 -
policy/modules/system/logging.te | 2 +-
2 files changed, 1 insertion(+), 2 deletions(-)
diff --git a/policy/modules/system/logging.if b/policy/modules/system/logging.if
index 042aa70..1c4af7b 100644
--- a/policy/modules/system/logging.if
+++ b/policy/modules/system/logging.if
@@ -533,7 +533,6 @@ interface(`logging_send_syslog_msg',`
type syslogd_t, syslogd_var_run_t, devlog_t;
')
- allow $1 devlog_t:lnk_file read_lnk_file_perms;
allow $1 devlog_t:sock_file write_sock_file_perms;
# systemd journal socket is in /run/systemd/journal/dev-log
diff --git a/policy/modules/system/logging.te b/policy/modules/system/logging.te
index c56577e..9a6361b 100644
--- a/policy/modules/system/logging.te
+++ b/policy/modules/system/logging.te
@@ -1,4 +1,4 @@
-policy_module(logging, 1.21.2)
+policy_module(logging, 1.21.3)
########################################
#
