[selinux-policy: 2506/3172] Manage alsa writable config files interface from Dan Walsh Moved term_dontaudit_use_console for styl
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 22:42:47 UTC 2010
commit 1d3d00b27964f0e07eba8d76a884ed28a929b976
Author: Jeremy Solt <jsolt at tresys.com>
Date: Thu Mar 11 14:03:48 2010 -0500
Manage alsa writable config files interface from Dan Walsh
Moved term_dontaudit_use_console for style.
policy/modules/admin/alsa.if | 20 ++++++++++++++++++++
policy/modules/admin/alsa.te | 2 ++
2 files changed, 22 insertions(+), 0 deletions(-)
---
diff --git a/policy/modules/admin/alsa.if b/policy/modules/admin/alsa.if
index 9533b67..b4c78c7 100644
--- a/policy/modules/admin/alsa.if
+++ b/policy/modules/admin/alsa.if
@@ -76,6 +76,26 @@ interface(`alsa_read_rw_config',`
########################################
## <summary>
+## Manage alsa writable config files.
+## </summary>
+## <param name="domain">
+## <summary>
+## Domain allowed access.
+## </summary>
+## </param>
+#
+interface(`alsa_manage_rw_config',`
+ gen_require(`
+ type alsa_etc_rw_t;
+ ')
+
+ allow $1 alsa_etc_rw_t:dir list_dir_perms;
+ manage_files_pattern($1, alsa_etc_rw_t, alsa_etc_rw_t)
+ read_lnk_files_pattern($1, alsa_etc_rw_t, alsa_etc_rw_t)
+')
+
+########################################
+## <summary>
## Read alsa lib files.
## </summary>
## <param name="domain">
diff --git a/policy/modules/admin/alsa.te b/policy/modules/admin/alsa.te
index bc060fc..8bb02f4 100644
--- a/policy/modules/admin/alsa.te
+++ b/policy/modules/admin/alsa.te
@@ -41,6 +41,8 @@ files_search_var_lib(alsa_t)
kernel_read_system_state(alsa_t)
+term_dontaudit_use_console(alsa_t)
+
dev_read_sound(alsa_t)
dev_write_sound(alsa_t)
dev_read_sysfs(alsa_t)
More information about the scm-commits
mailing list