From 037fc0f4e6ba7723f3cd8df967ef7b076cc9bb25 Mon Sep 17 00:00:00 2001
From: Chris PeBenito <cpebenito@tresys.com>
Date: Fri, 15 Feb 2008 19:59:10 +0000
Subject: [PATCH] trunk: label /proc/kallsyms with system_map_t.

---
 Changelog                      | 1 +
 policy/modules/kernel/files.te | 3 ++-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/Changelog b/Changelog
index 183a98d3..7f98985f 100644
--- a/Changelog
+++ b/Changelog
@@ -1,3 +1,4 @@
+- Label /proc/kallsyms with system_map_t.
 - 64-bit capabilities from Stephen Smalley.
 - Labeled networking peer object class updates.
 
diff --git a/policy/modules/kernel/files.te b/policy/modules/kernel/files.te
index 906fa33f..a96bc2b4 100644
--- a/policy/modules/kernel/files.te
+++ b/policy/modules/kernel/files.te
@@ -1,5 +1,5 @@
 
-policy_module(files,1.8.0)
+policy_module(files,1.8.1)
 
 ########################################
 #
@@ -131,6 +131,7 @@ files_mountpoint(src_t)
 #
 type system_map_t;
 files_type(system_map_t)
+genfscon proc /kallsyms gen_context(system_u:object_r:system_map_t,s0)
 
 #
 # tmp_t is the type of the temporary directories