node_exporter: allow reading localization

Signed-off-by: Kenton Groombridge <concord@gentoo.org> Signed-off-by: Jason Zaman <perfinion@gentoo.org>
author: Kenton Groombridge <concord@gentoo.org> 2024-06-27 13:16:33 -0400
committer: Jason Zaman <perfinion@gentoo.org> 2024-09-21 15:28:29 -0700
commit: d84d42340d61681c4f61b23c291b4912e09cff49 (patch)
tree: 0c1cfe6ad202740b46cbd86406e36856a8d2288f
parent: container: allow containers to execute tmpfs files (diff)
download: hardened-refpolicy-d84d42340d61681c4f61b23c291b4912e09cff49.tar.gz
hardened-refpolicy-d84d42340d61681c4f61b23c291b4912e09cff49.tar.bz2
hardened-refpolicy-d84d42340d61681c4f61b23c291b4912e09cff49.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/policy/modules/services/node_exporter.te b/policy/modules/services/node_exporter.te
index 80968d105..68af70eab 100644
--- a/policy/modules/services/node_exporter.te
+++ b/policy/modules/services/node_exporter.te
@@ -62,6 +62,8 @@ kernel_read_network_state(node_exporter_t)
 kernel_read_software_raid_state(node_exporter_t)
 kernel_read_system_state(node_exporter_t)
 
+miscfiles_read_localization(node_exporter_t)
+
 # to read udev state data
 udev_read_runtime_files(node_exporter_t)
author	Kenton Groombridge <concord@gentoo.org>	2024-06-27 13:16:33 -0400
committer	Jason Zaman <perfinion@gentoo.org>	2024-09-21 15:28:29 -0700
commit	d84d42340d61681c4f61b23c291b4912e09cff49 (patch)
tree	0c1cfe6ad202740b46cbd86406e36856a8d2288f
parent	container: allow containers to execute tmpfs files (diff)
download	hardened-refpolicy-d84d42340d61681c4f61b23c291b4912e09cff49.tar.gz hardened-refpolicy-d84d42340d61681c4f61b23c291b4912e09cff49.tar.bz2 hardened-refpolicy-d84d42340d61681c4f61b23c291b4912e09cff49.zip