diff --git a/Changelog b/Changelog index 183a98d..7f98985 100644 --- a/Changelog +++ b/Changelog @@ -1,3 +1,4 @@ +- Label /proc/kallsyms with system_map_t. - 64-bit capabilities from Stephen Smalley. - Labeled networking peer object class updates. diff --git a/policy/modules/kernel/files.te b/policy/modules/kernel/files.te index 906fa33..a96bc2b 100644 --- a/policy/modules/kernel/files.te +++ b/policy/modules/kernel/files.te @@ -1,5 +1,5 @@ -policy_module(files,1.8.0) +policy_module(files,1.8.1) ######################################## # @@ -131,6 +131,7 @@ files_mountpoint(src_t) # type system_map_t; files_type(system_map_t) +genfscon proc /kallsyms gen_context(system_u:object_r:system_map_t,s0) # # tmp_t is the type of the temporary directories