Reintroduce errors from refpolicy, will clean later (messes up patching)

author: Sven Vermeulen <sven.vermeulen@siphos.be> 2012-07-28 22:26:50 +0200
committer: Sven Vermeulen <sven.vermeulen@siphos.be> 2012-07-28 22:26:50 +0200
commit: 1bb8032ae11d2ad6d7feea042435777a89812a73 (patch)
tree: b2cd8704ed780cdc554f21f0153e958cf0eec373 /policy/modules/system/udev.if
parent: Support for /usr/local (diff)
download: hardened-refpolicy-1bb8032ae11d2ad6d7feea042435777a89812a73.tar.gz
hardened-refpolicy-1bb8032ae11d2ad6d7feea042435777a89812a73.tar.bz2
hardened-refpolicy-1bb8032ae11d2ad6d7feea042435777a89812a73.zip
1 files changed, 10 insertions, 1 deletions
diff --git a/policy/modules/system/udev.if b/policy/modules/system/udev.if
index d8dd3021..53f6d623 100644
--- a/policy/modules/system/udev.if
+++ b/policy/modules/system/udev.if
@@ -206,6 +206,10 @@ interface(`udev_manage_rules_files',`
 	')
 
 	manage_files_pattern($1, udev_rules_t, udev_rules_t)
+
+	files_search_etc($1)
+
+	udev_search_pids($1)
 ')
 
 ########################################
@@ -247,10 +251,15 @@ interface(`udev_read_db',`
 		type udev_tbl_t;
 	')
 
-	dev_list_all_dev_nodes($1)
 	allow $1 udev_tbl_t:dir list_dir_perms;
+
 	read_files_pattern($1, udev_tbl_t, udev_tbl_t)
 	read_lnk_files_pattern($1, udev_tbl_t, udev_tbl_t)
+
+	dev_list_all_dev_nodes($1)
+
+	files_search_etc($1)
+
 	# Device table files are beneith /run/udev
 	udev_search_pids($1)
 ')
author	Sven Vermeulen <sven.vermeulen@siphos.be>	2012-07-28 22:26:50 +0200
committer	Sven Vermeulen <sven.vermeulen@siphos.be>	2012-07-28 22:26:50 +0200
commit	1bb8032ae11d2ad6d7feea042435777a89812a73 (patch)
tree	b2cd8704ed780cdc554f21f0153e958cf0eec373 /policy/modules/system/udev.if
parent	Support for /usr/local (diff)
download	hardened-refpolicy-1bb8032ae11d2ad6d7feea042435777a89812a73.tar.gz hardened-refpolicy-1bb8032ae11d2ad6d7feea042435777a89812a73.tar.bz2 hardened-refpolicy-1bb8032ae11d2ad6d7feea042435777a89812a73.zip