systemd: Move interface implementation.

Signed-off-by: Jason Zaman <jason@perfinion.com>

1 files changed, 9 insertions, 9 deletions

diff --git a/policy/modules/system/systemd.if b/policy/modules/system/systemd.if
index c6d40b10..8d2bb8da 100644
--- a/policy/modules/system/systemd.if
+++ b/policy/modules/system/systemd.if
@@ -391,7 +391,7 @@ interface(`systemd_manage_all_units',`
 
 ########################################
 ## <summary>
-##      Allow domain to create/manage systemd_journal_t files
+##      Allow domain to read systemd_journal_t files
 ## </summary>
 ## <param name="domain">
 ##      <summary>
@@ -399,19 +399,18 @@ interface(`systemd_manage_all_units',`
 ##      </summary>
 ## </param>
 #
-interface(`systemd_manage_journal_files',`
+interface(`systemd_read_journal_files',`
 	gen_require(`
 		type systemd_journal_t;
 	')
 
-	manage_dirs_pattern($1, systemd_journal_t, systemd_journal_t)
-	manage_files_pattern($1, systemd_journal_t, systemd_journal_t)
-	allow $1 systemd_journal_t:file map;
+	list_dirs_pattern($1, systemd_journal_t, systemd_journal_t)
+	mmap_read_files_pattern($1, systemd_journal_t, systemd_journal_t)
 ')
 
 ########################################
 ## <summary>
-##      Allow domain to read systemd_journal_t files
+##      Allow domain to create/manage systemd_journal_t files
 ## </summary>
 ## <param name="domain">
 ##      <summary>
@@ -419,13 +418,14 @@ interface(`systemd_manage_journal_files',`
 ##      </summary>
 ## </param>
 #
-interface(`systemd_read_journal_files',`
+interface(`systemd_manage_journal_files',`
 	gen_require(`
 		type systemd_journal_t;
 	')
 
-	list_dirs_pattern($1, systemd_journal_t, systemd_journal_t)
-	mmap_read_files_pattern($1, systemd_journal_t, systemd_journal_t)
+	manage_dirs_pattern($1, systemd_journal_t, systemd_journal_t)
+	manage_files_pattern($1, systemd_journal_t, systemd_journal_t)
+	allow $1 systemd_journal_t:file map;
 ')
 
 ########################################