user_t -> userdomain

This commit is contained in:
Fredrik Eriksson 2020-05-23 10:38:17 +02:00
parent e971d05421
commit 4c31414327
Signed by: feffe
GPG Key ID: 18524638BE25530A
2 changed files with 5 additions and 4 deletions

View File

@ -1,5 +1,5 @@
AUX feffe.fc 0 BLAKE2B 786a02f742015903c6c6fd852552d272912f4740e15847618a86e217f71f5419d25e1031afee585313896444934eb04b903a685b1448b755d56f701afe9be2ce SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e
AUX feffe.te 3407 BLAKE2B ce3ee9c557e98b13e5a0a9bc9506d90789b1b82bc8fdb98ca2c4a489730e61d94aa333d093f07beac4461c34f6d8675488204c7e7147311424da8d50c1f159ff SHA512 6f332b0394554f9b86ef96b6206ade391d27dbea2e8a6728f3ce87c247c1408b2c8c5c80cc143299403796c810426486c8d531c271e84c226e7e68cc4312b6cf
AUX feffe.te 3443 BLAKE2B 86e51d074763e41f033e0df229f015a259ee1320fa520b60fa511d040854783f504d9ea7427e387b63ddbb9f0e58e67aa7479069dd93102f5832f754e982d2f1 SHA512 ce6194bba792bc9a1a2de46697cfaa2126668feb0910c239b6e3a9f0002d3a09674e9a16a41d1386ccc46f251643b6d201b65190daa9091ec0f99dec485d7142
DIST patchbundle-selinux-base-policy-2.20190609-r1.tar.bz2 407664 BLAKE2B e6b6b56f990389365c062522582e2177bc3b70040c99948efad25737e69178f9f72149cc443cb9edacfdd1aa6bc29f637cc61939f66e5cc3841f83298b33c41e SHA512 16195b51bb414ac82821f93756b3b5d0ec206b7035a50379c1f796082d9c53b11369e15086e1e26521808944266364470c43dcfdd1818ba079fda1613b7ef9bd
DIST refpolicy-2.20190609.tar.bz2 555882 BLAKE2B abc45d9c906e0c880b7c47b0fb8e33f4a277c73244e20e8a95c44452db817241110127a5f8a3347cfbf5e30bf91f9dd4e5dd826426eb88b383fdbff5963f5fcd SHA512 f05ca08d31e62b7bf7203d7b243cce9ba87dd68d13b30067b99a44d5007449078fa82d591faa88c2955d370a346e69faedc850c02bd77c5624a8c746a13467f3
EBUILD selinux-feffe-policies-2.20190609-r1.ebuild 398 BLAKE2B 7bafc0298e6b5ac626897db6af7582f9d2ca91415601491c3c2df2310de1002321240268e381891dbc96b51f199c67968c049b8da4f8b4b64c5d2a693ed167b8 SHA512 653db292b47d94e6f39e8da102073100fbc41b28828b6550aca22ba9245329409e3a78b5c450e2fcfc9121a117c7c8021b99ff8c3d1dcb33d34173c06acfc687

View File

@ -3,6 +3,7 @@ policy_module(feffe, 1.0)
gen_require(`
attribute file_type;
attribute userdomain;
type devicekit_disk_t;
type etc_t;
@ -12,8 +13,8 @@ gen_require(`
type fs_t;
')
dontaudit user_t file_type:file watch;
dontaudit user_t file_type:dir watch;
dontaudit userdomain file_type:file watch;
dontaudit userdomain file_type:dir watch;
dontaudit devicekit_disk_t etc_t:dir watch;
dontaudit mozilla_t xdg_cache_t:file { read write };
dontaudit mozilla_t fs_t:filesystem quotaget;
@ -46,7 +47,7 @@ tunable_policy(`feffe_use_xdm',`
type kmsg_device_t;
type init_var_run_t;
')
dev_rw_dri(user_t)
dev_rw_dri(userdomain)
read_files_pattern(system_dbusd_t, file_context_t, file_context_t)
allow system_dbusd_t kmsg_device_t:chr_file {open write};
allow user_dbusd_t self:process getcap;