29 lines
1.0 KiB
Diff
29 lines
1.0 KiB
Diff
|
diff --color -ru a/fapolicyd-selinux-0.4/fapolicyd.te b/fapolicyd-selinux-0.4/fapolicyd.te
|
||
|
|
--- a/fapolicyd-selinux-0.4/fapolicyd.te 2021-03-23 10:21:31.000000000 +0100
|
||
|
|
+++ b/fapolicyd-selinux-0.4/fapolicyd.te 2021-11-19 10:24:20.000002248 +0100
|
||
|
|
@@ -63,23 +63,13 @@
|
||
|
|
|
||
|
|
files_mmap_usr_files(fapolicyd_t)
|
||
|
|
files_read_all_files(fapolicyd_t)
|
||
|
|
-files_watch_mount_generic_tmp_dirs(fapolicyd_t)
|
||
|
|
-files_watch_with_perm_generic_tmp_dirs(fapolicyd_t)
|
||
|
|
-files_watch_mount_root_dirs(fapolicyd_t)
|
||
|
|
-files_watch_with_perm_root_dirs(fapolicyd_t)
|
||
|
|
|
||
|
|
fs_getattr_xattr_fs(fapolicyd_t)
|
||
|
|
-fs_watch_mount_tmpfs_dirs(fapolicyd_t)
|
||
|
|
-fs_watch_with_perm_tmpfs_dirs(fapolicyd_t)
|
||
|
|
|
||
|
|
logging_send_syslog_msg(fapolicyd_t)
|
||
|
|
dbus_system_bus_client(fapolicyd_t)
|
||
|
|
|
||
|
|
-userdom_watch_mount_tmp_dirs(fapolicyd_t)
|
||
|
|
-userdom_watch_with_perm_tmp_dirs(fapolicyd_t)
|
||
|
|
-
|
||
|
|
optional_policy(`
|
||
|
|
rpm_read_db(fapolicyd_t)
|
||
|
|
- allow fapolicyd_t rpm_var_lib_t:file { create };
|
||
|
|
- allow fapolicyd_t rpm_var_lib_t:dir { add_name write };
|
||
|
|
+ rpm_manage_db(fapolicyd_t)
|
||
|
|
')
|