tmpreaper wants to read meminfo

author Dan Walsh <dwalsh@redhat.com>

Thu, 10 Nov 2011 23:28:58 +0000 (18:28 -0500)

committer Dan Walsh <dwalsh@redhat.com>

Thu, 10 Nov 2011 23:28:58 +0000 (18:28 -0500)
author Dan Walsh <dwalsh@redhat.com>
Thu, 10 Nov 2011 23:28:58 +0000 (18:28 -0500)
committer Dan Walsh <dwalsh@redhat.com>
Thu, 10 Nov 2011 23:28:58 +0000 (18:28 -0500)
diff --git a/policy/modules/admin/tmpreaper.te b/policy/modules/admin/tmpreaper.te

index 90cf622e9136813893bbbb7f35a3baa1d82b21b9..70d684a1130ab913e47201d630fc83eb6b931648 100644 (file)
--- a/policy/modules/admin/tmpreaper.te
+++ b/policy/modules/admin/tmpreaper.te
@@ -19,6 +19,8 @@ role system_r types tmpreaper_t;
  allow tmpreaper_t self:process { fork sigchld };
  allow tmpreaper_t self:capability { dac_override dac_read_search fowner };
  
+kernel_read_system_state(tmpreaper_t)
+
  dev_read_urand(tmpreaper_t)
  
  fs_getattr_xattr_fs(tmpreaper_t)
author	Dan Walsh <dwalsh@redhat.com>
	Thu, 10 Nov 2011 23:28:58 +0000 (18:28 -0500)
committer	Dan Walsh <dwalsh@redhat.com>
	Thu, 10 Nov 2011 23:28:58 +0000 (18:28 -0500)