[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/services/

Sun, 05 Sep 2021 09:00:26 -0700 

commit:     32dc5265e1ec91a095161cdd6da680f1b6741bfa
Author:     Chris PeBenito <pebenito <AT> ieee <DOT> org>
AuthorDate: Fri Jul 16 13:41:24 2021 +0000
Commit:     Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Sun Sep  5 14:26:44 2021 +0000
URL:        
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=32dc5265

virt: Move lines.

Signed-off-by: Chris PeBenito <pebenito <AT> ieee.org>
Signed-off-by: Jason Zaman <perfinion <AT> gentoo.org>

 policy/modules/services/virt.te | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/policy/modules/services/virt.te b/policy/modules/services/virt.te
index 47c6042c..8d822e2a 100644
--- a/policy/modules/services/virt.te
+++ b/policy/modules/services/virt.te
@@ -503,6 +503,11 @@ manage_dirs_pattern(virtd_t, virt_cache_t, virt_cache_t)
 manage_files_pattern(virtd_t, virt_cache_t, virt_cache_t)
 files_var_filetrans(virtd_t, virt_cache_t, { file dir })
 
+allow virtd_t virt_common_runtime_t:file append_file_perms;
+manage_dirs_pattern(virtd_t, virt_common_runtime_t, virt_common_runtime_t)
+manage_files_pattern(virtd_t, virt_common_runtime_t, virt_common_runtime_t)
+filetrans_pattern(virtd_t, virt_runtime_t, virt_common_runtime_t, dir, 
"common")
+
 manage_dirs_pattern(virtd_t, virt_content_t, virt_content_t)
 manage_files_pattern(virtd_t, virt_content_t, virt_content_t)
 filetrans_pattern(virtd_t, virt_home_t, virt_content_t, dir, "isos")
@@ -584,11 +589,6 @@ manage_files_pattern(virtd_t, virt_runtime_t, 
virt_runtime_t)
 manage_sock_files_pattern(virtd_t, virt_runtime_t, virt_runtime_t)
 files_runtime_filetrans(virtd_t, virt_runtime_t, { file dir })
 
-allow virtd_t virt_common_runtime_t:file append_file_perms;
-manage_dirs_pattern(virtd_t, virt_common_runtime_t, virt_common_runtime_t)
-manage_files_pattern(virtd_t, virt_common_runtime_t, virt_common_runtime_t)
-filetrans_pattern(virtd_t, virt_runtime_t, virt_common_runtime_t, dir, 
"common")
-
 manage_dirs_pattern(virtd_t, virtd_lxc_runtime_t, virtd_lxc_runtime_t)
 manage_files_pattern(virtd_t, virtd_lxc_runtime_t, virtd_lxc_runtime_t)
 filetrans_pattern(virtd_t, virt_runtime_t, virtd_lxc_runtime_t, dir, "lxc")

Reply via email to