Allow qmail to use uucpd

Fixes found by Tom London for devicekit and udev using usbmuxd socket
This commit is contained in:
Dan Walsh 2010-08-31 10:51:10 -04:00
parent 5fb4db53ad
commit 4fccad906d
5 changed files with 34 additions and 1 deletions

View File

@ -62,7 +62,7 @@ allow nsplugin_t self:shm create_shm_perms;
allow nsplugin_t self:msgq create_msgq_perms;
allow nsplugin_t self:unix_stream_socket { connectto create_stream_socket_perms };
allow nsplugin_t self:unix_dgram_socket create_socket_perms;
allow nsplugin_t nsplugin_rw_t:dir search_dir_perms;
allow nsplugin_t nsplugin_rw_t:dir list_dir_perms;
tunable_policy(`allow_nsplugin_execmem',`
allow nsplugin_t self:process { execstack execmem };

View File

@ -283,6 +283,10 @@ optional_policy(`
fstools_domtrans(devicekit_power_t)
')
optional_policy(`
gnome_read_home_config(devicekit_power_t)
')
optional_policy(`
hal_domtrans_mac(devicekit_power_t)
hal_manage_log(devicekit_power_t)
@ -302,6 +306,11 @@ optional_policy(`
udev_read_db(devicekit_power_t)
')
optional_policy(`
usbmuxd_stream_connect(devicekit_power_t)
')
optional_policy(`
vbetool_domtrans(devicekit_power_t)
')

View File

@ -120,6 +120,10 @@ mta_append_spool(qmail_local_t)
qmail_domtrans_queue(qmail_local_t)
optional_policy(`
uucp_domtrans(qmail_local_t)
')
optional_policy(`
spamassassin_domtrans_client(qmail_local_t)
')

View File

@ -1,5 +1,24 @@
## <summary>Unix to Unix Copy</summary>
########################################
## <summary>
## Execute the uucico program in the
## uucpd_t domain.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed to transition.
## </summary>
## </param>
#
interface(`uucp_domtrans',`
gen_require(`
type uucpd_t, uucpd_exec_t;
')
domtrans_pattern($1, uucpd_exec_t, uucpd_t)
')
########################################
## <summary>
## Allow the specified domain to append

View File

@ -295,6 +295,7 @@ optional_policy(`
optional_policy(`
usbmuxd_domtrans(udev_t)
usbmuxd_stream_connect(udev_t)
')
optional_policy(`