Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
path: root/policy/modules/contrib/gnome.if
diff options
context:
space:
mode:
authorSven Vermeulen <sven.vermeulen@siphos.be>2012-06-24 15:29:19 +0200
committerSven Vermeulen <sven.vermeulen@siphos.be>2012-06-24 15:29:19 +0200
commit3786b62be7093952757a1bc60f79c1a0ba3afd93 (patch)
treea6fe366af72b46c8699d59fb832d88625269186f /policy/modules/contrib/gnome.if
parentAllow gnome roles to manage gnome config types (diff)
downloadhardened-refpolicy-3786b62be7093952757a1bc60f79c1a0ba3afd93.tar.gz
hardened-refpolicy-3786b62be7093952757a1bc60f79c1a0ba3afd93.tar.bz2
hardened-refpolicy-3786b62be7093952757a1bc60f79c1a0ba3afd93.zip
Allow users to mange their gnome config
Diffstat (limited to 'policy/modules/contrib/gnome.if')
-rw-r--r--policy/modules/contrib/gnome.if5
1 files changed, 5 insertions, 0 deletions
diff --git a/policy/modules/contrib/gnome.if b/policy/modules/contrib/gnome.if
index 411d4c07..67340eae 100644
--- a/policy/modules/contrib/gnome.if
+++ b/policy/modules/contrib/gnome.if
@@ -19,6 +19,7 @@ interface(`gnome_role',`
gen_require(`
type gconfd_t, gconfd_exec_t;
type gconf_tmp_t;
+ type gconf_home_t;
')
role $1 types gconfd_t;
@@ -28,6 +29,9 @@ interface(`gnome_role',`
allow gconfd_t $2:fifo_file write;
allow gconfd_t $2:unix_stream_socket connectto;
+ manage_dirs_pattern($2, gconf_home_t, gconf_home_t)
+ manage_files_pattern($2, gconf_home_t, gconf_home_t)
+
ps_process_pattern($2, gconfd_t)
#gnome_stream_connect_gconf_template($1, $2)
@@ -191,6 +195,7 @@ template(`gnome_read_config',`
interface(`gnome_manage_config',`
gen_require(`
type gnome_home_t;
+ type gnome_xdg_config_t;
')
manage_dirs_pattern($1, gnome_home_t, gnome_home_t)