diff options
| author |   Dominick Grift <dominick.grift@gmail.com> | 2012-09-20 11:58:11 +0200 |
|---|---|---|
| committer |   Sven Vermeulen <sven.vermeulen@siphos.be> | 2012-09-27 19:07:09 +0200 |
| commit | 0745641d1def165089086005c6def2173856ac1d (patch) | |
| tree | b874eae5879c5a1c467a7323c0e4ad4e657c25aa /policy/modules/contrib/brctl.te | |
| parent | Changes to the bluetooth policy module (diff) | |
| download | hardened-refpolicy-0745641d1def165089086005c6def2173856ac1d.tar.gz hardened-refpolicy-0745641d1def165089086005c6def2173856ac1d.tar.bz2 hardened-refpolicy-0745641d1def165089086005c6def2173856ac1d.zip | |
Changes to the brctl policy module
Use role attributes
Module clean up
Signed-off-by: Dominick Grift <dominick.grift@gmail.com>
Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
Diffstat (limited to 'policy/modules/contrib/brctl.te')
| -rw-r--r-- | policy/modules/contrib/brctl.te | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/policy/modules/contrib/brctl.te b/policy/modules/contrib/brctl.te index 9a62a1d02..94c128ca1 100644 --- a/policy/modules/contrib/brctl.te +++ b/policy/modules/contrib/brctl.te @@ -1,17 +1,21 @@ -policy_module(brctl, 1.6.0) +policy_module(brctl, 1.6.1) ######################################## # # Declarations # +attribute_role brctl_roles; +roleattribute system_r brctl_roles; + type brctl_t; type brctl_exec_t; init_system_domain(brctl_t, brctl_exec_t) +role brctl_roles types brctl_t; ######################################## # -# brctl local policy +# Local policy # allow brctl_t self:capability net_admin; @@ -29,7 +33,6 @@ corenet_rw_tun_tap_dev(brctl_t) dev_rw_sysfs(brctl_t) dev_write_sysfs_dirs(brctl_t) -# Init script handling domain_use_interactive_fds(brctl_t) files_read_etc_files(brctl_t) |