selinux-policy/suse_modifications_logging.patch

Index: serefpolicy-20140730/policy/modules/system/logging.te
===================================================================
--- serefpolicy-20140730.orig/policy/modules/system/logging.te
+++ serefpolicy-20140730/policy/modules/system/logging.te
@@ -565,6 +565,9 @@ userdom_dontaudit_use_unpriv_user_fds(sy
 userdom_search_user_home_dirs(syslogd_t)
 userdom_rw_inherited_user_tmp_files(syslogd_t)
 
+allow syslogd_t var_run_t:file { read getattr open };
+allow syslogd_t var_run_t:sock_file write;
+
 ifdef(`distro_gentoo',`
 	# default gentoo syslog-ng config appends kernel
 	# and high priority messages to /dev/tty12
OBS-URL: https://build.opensuse.org/package/show/security:SELinux/selinux-policy?expand=0&rev=68 2018-11-27 10:16:35 +01:00			`Index: serefpolicy-20140730/policy/modules/system/logging.te`
			`===================================================================`
			`--- serefpolicy-20140730.orig/policy/modules/system/logging.te`
			`+++ serefpolicy-20140730/policy/modules/system/logging.te`
			`@@ -565,6 +565,9 @@ userdom_dontaudit_use_unpriv_user_fds(sy`
			`userdom_search_user_home_dirs(syslogd_t)`
			`userdom_rw_inherited_user_tmp_files(syslogd_t)`

			`+allow syslogd_t var_run_t:file { read getattr open };`
			`+allow syslogd_t var_run_t:sock_file write;`
			`+`
			ifdef(`distro_gentoo',`
			`# default gentoo syslog-ng config appends kernel`
			`# and high priority messages to /dev/tty12`