[selinux-policy: 3147/3172] Allow rpc.quota to do quotamod Allow mozilla_plugin to execute mozilla_home_t
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 23:39:49 UTC 2010
commit 7cfb93547394de1fb8e1e55a90a4518e2a30a9ff
Author: Dan Walsh <dwalsh at redhat.com>
Date: Fri Sep 24 11:55:05 2010 -0400
Allow rpc.quota to do quotamod
Allow mozilla_plugin to execute mozilla_home_t
policy/modules/apps/mozilla.te | 1 +
policy/modules/services/rpc.te | 1 +
2 files changed, 2 insertions(+), 0 deletions(-)
---
diff --git a/policy/modules/apps/mozilla.te b/policy/modules/apps/mozilla.te
index 0a9a921..7243acc 100644
--- a/policy/modules/apps/mozilla.te
+++ b/policy/modules/apps/mozilla.te
@@ -304,6 +304,7 @@ allow mozilla_plugin_t self:fifo_file manage_fifo_file_perms;
allow mozilla_plugin_t self:unix_stream_socket { connectto create_stream_socket_perms };
read_files_pattern(mozilla_plugin_t, mozilla_home_t, mozilla_home_t)
+can_exec(mozilla_plugin_t, mozilla_home_t)
manage_dirs_pattern(mozilla_plugin_t, mozilla_plugin_tmp_t, mozilla_plugin_tmp_t)
manage_files_pattern(mozilla_plugin_t, mozilla_plugin_tmp_t, mozilla_plugin_tmp_t)
diff --git a/policy/modules/services/rpc.te b/policy/modules/services/rpc.te
index 9ae080e..ea2c0f0 100644
--- a/policy/modules/services/rpc.te
+++ b/policy/modules/services/rpc.te
@@ -88,6 +88,7 @@ fs_read_rpc_files(rpcd_t)
fs_read_rpc_symlinks(rpcd_t)
fs_rw_rpc_sockets(rpcd_t)
fs_get_all_fs_quotas(rpcd_t)
+fs_set_xattr_fs_quotas(rpcd_t)
fs_getattr_all_fs(rpcd_t)
storage_getattr_fixed_disk_dev(rpcd_t)
More information about the scm-commits
mailing list