refpolicy (2:0.2.20100524-7+squeeze1) policy/modules/system/udev.if

Summary

 policy/modules/system/udev.if |   18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

    
download this patch

Patch contents

--- refpolicy-0.2.20100524.orig/policy/modules/system/udev.if
+++ refpolicy-0.2.20100524/policy/modules/system/udev.if
@@ -168,6 +168,24 @@
 
 ########################################
 ## <summary>
+##     Allow process to remove udev table files
+## </summary>
+## <param name="domain">
+##     <summary>
+##     The type of the process performing this action.
+##     </summary>
+## </param>
+#
+interface(`udev_unlink_table',`
+	gen_require(`
+		type udev_tbl_t;
+	')
+
+	allow $1 udev_tbl_t:file unlink;
+')
+
+########################################
+## <summary>
 ##	Read the udev device table.
 ## </summary>
 ## <desc>