commit: 8a743e507cd42248d705907e7bcb42e268bfab9a
Author: Sven Vermeulen <sven.vermeulen <AT> siphos <DOT> be>
AuthorDate: Thu Nov 27 21:00:38 2014 +0000
Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org>
CommitDate: Thu Nov 27 21:00:38 2014 +0000
URL:
http://sources.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=8a743e50
Fix bug 530918 - Allow lvm_t socket creation perms to handle cryptsetup
luksFormat
---
policy/modules/system/lvm.te | 3 +++
1 file changed, 3 insertions(+)
diff --git a/policy/modules/system/lvm.te b/policy/modules/system/lvm.te
index c9fba08..a5952f7 100644
--- a/policy/modules/system/lvm.te
+++ b/policy/modules/system/lvm.te
@@ -361,6 +361,9 @@ ifdef(`distro_gentoo',`
# Local lvm policy
#
+ # cryptsetup support bug 530918
+ allow lvm_t self:socket create_stream_socket_perms;
+
create_dirs_pattern(lvm_t, lvm_etc_t, lvm_metadata_t)
filetrans_pattern(lvm_t, lvm_etc_t, lvm_metadata_t, dir, "cache")
