[selinux-policy: 1522/3172] need send_msg for merging dbus
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 21:16:49 UTC 2010
commit 1b11a1fe6507c7ba6719baf7f9513d77ab7cbee3
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Tue Jun 20 17:32:21 2006 +0000
need send_msg for merging dbus
refpolicy/policy/modules/admin/portage.if | 5 +++++
refpolicy/policy/modules/admin/portage.te | 2 +-
2 files changed, 6 insertions(+), 1 deletions(-)
---
diff --git a/refpolicy/policy/modules/admin/portage.if b/refpolicy/policy/modules/admin/portage.if
index 8debda6..39407bc 100644
--- a/refpolicy/policy/modules/admin/portage.if
+++ b/refpolicy/policy/modules/admin/portage.if
@@ -92,6 +92,10 @@ interface(`portage_run',`
#
interface(`portage_compile_domain',`
+ gen_require(`
+ class dbus send_msg;
+ ')
+
allow $1 self:capability { fowner fsetid mknod setgid setuid chown dac_override net_raw };
dontaudit $1 self:capability sys_chroot;
allow $1 self:process { setpgid setsched setrlimit signal_perms execmem };
@@ -114,6 +118,7 @@ interface(`portage_compile_domain',`
allow $1 self:udp_socket recvfrom;
# needed for merging dbus:
allow $1 self:netlink_selinux_socket { bind create read };
+ allow $1 self:dbus send_msg;
allow $1 portage_devpts_t:chr_file { rw_file_perms setattr };
term_create_pty($1,portage_devpts_t)
diff --git a/refpolicy/policy/modules/admin/portage.te b/refpolicy/policy/modules/admin/portage.te
index eff3951..00351d1 100644
--- a/refpolicy/policy/modules/admin/portage.te
+++ b/refpolicy/policy/modules/admin/portage.te
@@ -1,5 +1,5 @@
-policy_module(portage,1.0.3)
+policy_module(portage,1.0.4)
########################################
#
More information about the scm-commits
mailing list