Merge "netutils_wrapper: suppress sysfs denials"

RevengeOS · Mar 30, 2019 · 2c6a0eb · 2c6a0eb
2 parents aed7273 + c510da9
commit 2c6a0eb
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/private/netutils_wrapper.te b/private/netutils_wrapper.te
@@ -36,6 +36,7 @@ domain_auto_trans({
 
 # suppress spurious denials
 dontaudit netutils_wrapper self:global_capability_class_set sys_resource;
+dontaudit netutils_wrapper sysfs_type:file read;
 
 # netutils wrapper may only use the following capabilities.
 neverallow netutils_wrapper self:global_capability_class_set ~{ net_admin net_raw };