From fe9430f73ff4436cc80bc7d5b81cf229e7059ff6 Mon Sep 17 00:00:00 2001
From: Dmitry Sharshakov <dmitry.sharshakov@siderolabs.com>
Date: Fri, 27 Sep 2024 18:12:28 +0200
Subject: [PATCH] todo module label

Signed-off-by: Dmitry Sharshakov <dmitry.sharshakov@siderolabs.com>
---
 selinux/services/udev.cil | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/selinux/services/udev.cil b/selinux/services/udev.cil
index 840859beb34..8c745ed23b7 100644
--- a/selinux/services/udev.cil
+++ b/selinux/services/udev.cil
@@ -24,7 +24,7 @@
 (call system_service_p (udev_t))
 (allow udev_t udev_exec_t (file (entrypoint execute_no_trans)))
 
-; TODO: other module locations? Special label?
+; TODO: special label?
 (allow udev_t lib_t (system (module_load)))
 (allow udev_t self (capability (sys_module)))
 (allow udev_t self (cap_userns (sys_module)))