[selinux-policy: 1015/3172] add back rules that were mistakenly removed

[Daniel J Walsh]

commit f525b49ed93d74dd05a6b2e463970006ae3e7089
Author: Chris PeBenito <cpebenito at tresys.com>
Date:   Mon Dec 5 15:00:29 2005 +0000

    add back rules that were mistakenly removed

 refpolicy/policy/modules/services/bind.te          |    8 +++++++-
 refpolicy/policy/modules/services/hal.te           |    4 +++-
 .../policy/modules/services/networkmanager.te      |    8 +++++++-
 refpolicy/policy/modules/system/sysnetwork.te      |    8 +++++++-
 refpolicy/policy/modules/system/unconfined.te      |    2 ++
 5 files changed, 26 insertions(+), 4 deletions(-)
---
diff --git a/refpolicy/policy/modules/services/bind.te b/refpolicy/policy/modules/services/bind.te
index 9ecba81..659b761 100644
--- a/refpolicy/policy/modules/services/bind.te
+++ b/refpolicy/policy/modules/services/bind.te
@@ -1,5 +1,5 @@
 
-policy_module(bind,1.0.0)
+policy_module(bind,1.0.1)
 
 ########################################
 #
@@ -157,6 +157,12 @@ tunable_policy(`named_write_master_zones',`
 ')
 
 optional_policy(`dbus',`
+	gen_require(`
+		class dbus send_msg;
+	')
+
+	allow named_t self:dbus send_msg;
+
 	init_dbus_chat_script(named_t)
 
 	sysnet_dbus_chat_dhcpc(named_t)
diff --git a/refpolicy/policy/modules/services/hal.te b/refpolicy/policy/modules/services/hal.te
index 236dcee..215e5bc 100644
--- a/refpolicy/policy/modules/services/hal.te
+++ b/refpolicy/policy/modules/services/hal.te
@@ -1,5 +1,5 @@
 
-policy_module(hal,1.0.2)
+policy_module(hal,1.0.3)
 
 ########################################
 #
@@ -142,6 +142,8 @@ optional_policy(`dbus',`
 	dbus_send_system_bus_msg(hald_t)
 	dbus_connect_system_bus(hald_t)
 
+	init_dbus_chat_script(hald_t)
+
 	optional_policy(`networkmanager',`
 		networkmanager_dbus_chat(hald_t)
 	')
diff --git a/refpolicy/policy/modules/services/networkmanager.te b/refpolicy/policy/modules/services/networkmanager.te
index c0a7805..68ac5a7 100644
--- a/refpolicy/policy/modules/services/networkmanager.te
+++ b/refpolicy/policy/modules/services/networkmanager.te
@@ -1,5 +1,5 @@
 
-policy_module(networkmanager,1.0.0)
+policy_module(networkmanager,1.0.1)
 
 ########################################
 #
@@ -132,6 +132,12 @@ optional_policy(`consoletype',`
 ')
 
 optional_policy(`dbus',`
+	gen_require(`
+		class dbus send_msg;
+	')
+
+	allow NetworkManager_t self:dbus send_msg;
+
 	dbus_system_bus_client_template(NetworkManager,NetworkManager_t)
 	dbus_connect_system_bus(NetworkManager_t)
 	dbus_send_system_bus_msg(NetworkManager_t)
diff --git a/refpolicy/policy/modules/system/sysnetwork.te b/refpolicy/policy/modules/system/sysnetwork.te
index a68c3c1..302ae6d 100644
--- a/refpolicy/policy/modules/system/sysnetwork.te
+++ b/refpolicy/policy/modules/system/sysnetwork.te
@@ -1,5 +1,5 @@
 
-policy_module(sysnetwork,1.0.2)
+policy_module(sysnetwork,1.0.3)
 
 ########################################
 #
@@ -161,6 +161,12 @@ optional_policy(`consoletype',`
 ')
 
 optional_policy(`dbus',`
+	gen_require(`
+		class dbus send_msg;
+	')
+
+	allow dhcpc_t self:dbus send_msg;
+
 	init_dbus_chat_script(dhcpc_t)
 
 	dbus_system_bus_client_template(dhcpc,dhcpc_t)
diff --git a/refpolicy/policy/modules/system/unconfined.te b/refpolicy/policy/modules/system/unconfined.te
index b7d7b6c..9f94c67 100644
--- a/refpolicy/policy/modules/system/unconfined.te
+++ b/refpolicy/policy/modules/system/unconfined.te
@@ -145,5 +145,7 @@ ifdef(`targeted_policy',`
 	ifdef(`use_mcs',`
 	rw_dir_create_file(sysadm_su_t, home_dir_type)
 	')
+	allow unconfined_t initrc_t : dbus { send_msg acquire_svc };
+	allow initrc_t unconfined_t : dbus { send_msg acquire_svc };
 	') dnl end TODO
 ')