From 7d0161c9fad30ff906f1efd0542046c30af83f2c Mon Sep 17 00:00:00 2001 From: Ralph Bean Date: Fri, 18 Jul 2014 20:06:55 +0000 Subject: [PATCH] Readin', and writin', and getattrin' --- .../base/files/selinux/fi-collectd.mod | Bin 1899 -> 1924 bytes .../base/files/selinux/fi-collectd.pp | Bin 1915 -> 1940 bytes .../base/files/selinux/fi-collectd.te | 6 +++--- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/roles/collectd/base/files/selinux/fi-collectd.mod b/roles/collectd/base/files/selinux/fi-collectd.mod index fddd083c844de9c6f47e966b1d34700bd29e5042..9f77dcfb391c6ef0721cdbd9a35e471c45244871 100644 GIT binary patch delta 106 zcmaFO*TO%+fzfoMqYR@hGXnzy2!lXzesXqvT4qivD+2=q69WT7c~NFbDmzp~dTL2x zNl6h40|Nsi0|P@*YGTUfMn)HAM)t`YnS>|XvItDR%gi(RD@(!TsjL#4Ygykh0sx#% B84&;g delta 87 zcmZqSf6X_+fzf26qYR@8BLf2i2!lXzesXqvT4qivJ5(?|wIs2mq-gUjMi=JEub6ly i+puv=zQrmqS&x}#G9PQfaOIam0_p-iY1OTxJ B7{UMm delta 87 zcmbQj|C?_@0HevqKp93AMg|535C(zb{N(KTw9K4TcBo)_YDr>ANzvw2j4sTRe=+e) i_F?0g{EAgzvK=$eWI5J?$>&&jCf{S`*}RPP9U}mn+!wq6 diff --git a/roles/collectd/base/files/selinux/fi-collectd.te b/roles/collectd/base/files/selinux/fi-collectd.te index d071220e01..b1ceef9244 100644 --- a/roles/collectd/base/files/selinux/fi-collectd.te +++ b/roles/collectd/base/files/selinux/fi-collectd.te @@ -1,5 +1,5 @@ -module fi-collectd 1.4; +module fi-collectd 1.5; require { type var_run_t; @@ -7,7 +7,7 @@ require { type configfs_t; type pstorefs_t; type collectd_t; - class sock_file getattr; + class sock_file { read write getattr }; class capability { setuid dac_read_search sys_ptrace setgid dac_override }; class file { read execute execute_no_trans }; class dir getattr; @@ -18,4 +18,4 @@ allow collectd_t bin_t:file { execute execute_no_trans }; allow collectd_t configfs_t:dir getattr; allow collectd_t pstorefs_t:dir getattr; allow collectd_t self:capability { setuid dac_read_search sys_ptrace setgid dac_override }; -allow collectd_t var_run_t:sock_file getattr; +allow collectd_t var_run_t:sock_file { read write getattr };