[refpolicy] [ patch 03/44] bootloader: search parent.
Christopher J. PeBenito
cpebenito at tresys.com
Tue Oct 5 12:57:22 CDT 2010
On 10/04/10 14:23, Dominick Grift wrote:
>
> Signed-off-by: Dominick Grift<domg472 at gmail.com>
Merged.
> ---
> :100644 100644 2242ecd... a4a47af... M policy/modules/admin/bootloader.if
> policy/modules/admin/bootloader.if | 2 ++
> 1 files changed, 2 insertions(+), 0 deletions(-)
>
> diff --git a/policy/modules/admin/bootloader.if b/policy/modules/admin/bootloader.if
> index 2242ecd..a4a47af 100644
> --- a/policy/modules/admin/bootloader.if
> +++ b/policy/modules/admin/bootloader.if
> @@ -15,6 +15,7 @@ interface(`bootloader_domtrans',`
> type bootloader_t, bootloader_exec_t;
> ')
>
> + corecmd_search_bin($1)
> domtrans_pattern($1, bootloader_exec_t, bootloader_t)
> ')
>
> @@ -67,6 +68,7 @@ interface(`bootloader_rw_tmp_files',`
> ')
>
> # FIXME: read tmp_t dir
> + files_search_tmp($1)
> allow $1 bootloader_tmp_t:file rw_file_perms;
> ')
>
--
Chris PeBenito
Tresys Technology, LLC
www.tresys.com | oss.tresys.com
More information about the refpolicy
mailing list