Hi,
when starting syslogd by init script:
audit(1196761642.698:3): avc: denied { ioctl } for pid=1353
comm="syslogd" name="xconsole" dev=tmpfs ino=3703
scontext=system_u:system_r:syslogd_t:s0
tcontext=system_u:object_r:xconsole_device_t:s0 tclass=fifo_file
attached patch, that xserver_rw_console() gives ioctl permission.
Can be merged?
Regards
--
Zito
Index: policy/modules/services/xserver.if
===================================================================
--- policy/modules/services/xserver.if (revision 2539)
+++ policy/modules/services/xserver.if (working copy)
@@ -773,7 +773,7 @@
type xconsole_device_t;
')
- allow $1 xconsole_device_t:fifo_file { getattr read write };
+ allow $1 xconsole_device_t:fifo_file { getattr read write ioctl };
')
########################################
