From: Miroslav Grepl <mgrepl@redhat.com>
Date: Tue, 6 Dec 2011 14:05:36 +0000 (+0100)
Subject: Add type for rhev-agent log file
X-Git-Tag: 000~34^2~2
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=10eb402ea604bc451916a8e95baecd68abd6938a;p=people%2Fstevee%2Fselinux-policy.git

Add type for rhev-agent log file
---

diff --git a/policy/modules/services/rhev.fc b/policy/modules/services/rhev.fc
index 4e7605a9..9a8524dc 100644
--- a/policy/modules/services/rhev.fc
+++ b/policy/modules/services/rhev.fc
@@ -1,3 +1,5 @@
 /usr/share/rhev-agent/rhev-agentd\.py	--	gen_context(system_u:object_r:rhev_agentd_exec_t,s0)
 
 /var/run/rhev-agentd\.pid		--	gen_context(system_u:object_r:rhev_agentd_var_run_t,s0)
+
+/var/log/rhev-agent(/.*)?           gen_context(system_u:object_r:rhev_agentd_log_t,s0)
diff --git a/policy/modules/services/rhev.te b/policy/modules/services/rhev.te
index d3473e67..b5168a04 100644
--- a/policy/modules/services/rhev.te
+++ b/policy/modules/services/rhev.te
@@ -15,6 +15,9 @@ files_pid_file(rhev_agentd_var_run_t)
 type rhev_agentd_tmp_t;
 files_tmp_file(rhev_agentd_tmp_t)
 
+type rhev_agentd_log_t;
+logging_log_file(rhev_agentd_log_t)
+
 ########################################
 #
 # rhev_agentd_t local policy
@@ -31,6 +34,8 @@ manage_files_pattern(rhev_agentd_t, rhev_agentd_var_run_t, rhev_agentd_var_run_t
 manage_sock_files_pattern(rhev_agentd_t, rhev_agentd_var_run_t, rhev_agentd_var_run_t)
 files_pid_filetrans(rhev_agentd_t, rhev_agentd_var_run_t, { dir file sock_file })
 
+manage_files_pattern(rhev_agentd_t, rhev_agentd_log_t, rhev_agentd_log_t)
+
 manage_dirs_pattern(rhev_agentd_t, rhev_agentd_tmp_t, rhev_agentd_tmp_t)
 manage_files_pattern(rhev_agentd_t, rhev_agentd_tmp_t, rhev_agentd_tmp_t)
 files_tmp_filetrans(rhev_agentd_t, rhev_agentd_tmp_t, { file dir })