Allow sshd_t to getattr on all file systems in order to generate avc on nfs_t

diff --git a/policy/modules/services/ssh.if b/policy/modules/services/ssh.if
index d6a4b773edb1da0fc3a960533fef1c6fe98c4fcc..e494f5cd4a79a46fb0405929e3d2d2f202a23aa7 100644 (file)
--- a/policy/modules/services/ssh.if
+++ b/policy/modules/services/ssh.if
@@ -250,7 +250,7 @@ template(`ssh_server_template',`
        # tunnel feature and -w (net_admin capability also)
        corenet_rw_tun_tap_dev($1_t)
 
-       fs_dontaudit_getattr_all_fs($1_t)
+       fs_getattr_all_fs($1_t)
 
        auth_rw_login_records($1_t)
        auth_rw_faillog($1_t)