From 6e328912ac413715fb03268ef75599167f0baff2 Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Thu, 14 Aug 2008 13:08:53 +0000 Subject: [PATCH] trunk: two small patches from dan. --- policy/modules/admin/amanda.te | 3 ++- policy/modules/admin/brctl.te | 4 +++- policy/modules/system/fstools.if | 18 ++++++++++++++++++ policy/modules/system/fstools.te | 2 +- 4 files changed, 24 insertions(+), 3 deletions(-) diff --git a/policy/modules/admin/amanda.te b/policy/modules/admin/amanda.te index 5d6087d1..06730e51 100644 --- a/policy/modules/admin/amanda.te +++ b/policy/modules/admin/amanda.te @@ -1,5 +1,5 @@ -policy_module(amanda, 1.9.1) +policy_module(amanda, 1.9.2) ####################################### # @@ -223,6 +223,7 @@ files_search_pids(amanda_recover_t) auth_use_nsswitch(amanda_recover_t) fstools_domtrans(amanda_t) +fstools_signal(amanda_t) libs_use_ld_so(amanda_recover_t) libs_use_shared_libs(amanda_recover_t) diff --git a/policy/modules/admin/brctl.te b/policy/modules/admin/brctl.te index fe785f06..ab584951 100644 --- a/policy/modules/admin/brctl.te +++ b/policy/modules/admin/brctl.te @@ -1,4 +1,4 @@ -policy_module(brctl, 1.2.0) +policy_module(brctl, 1.2.1) ######################################## # @@ -33,6 +33,8 @@ domain_use_interactive_fds(brctl_t) files_read_etc_files(brctl_t) +term_dontaudit_use_console(brctl_t) + libs_use_ld_so(brctl_t) libs_use_shared_libs(brctl_t) diff --git a/policy/modules/system/fstools.if b/policy/modules/system/fstools.if index a5c3d692..2b1dddab 100644 --- a/policy/modules/system/fstools.if +++ b/policy/modules/system/fstools.if @@ -69,6 +69,24 @@ interface(`fstools_exec',` can_exec($1,fsadm_exec_t) ') +######################################## +## +## Send signal to fsadm process +## +## +## +## Domain allowed access. +## +## +# +interface(`fstools_signal',` + gen_require(` + type fsadm_t; + ') + + allow $1 fsadm_t:process signal; +') + ######################################## ## ## Read fstools unnamed pipes. diff --git a/policy/modules/system/fstools.te b/policy/modules/system/fstools.te index 64b624c1..1826914a 100644 --- a/policy/modules/system/fstools.te +++ b/policy/modules/system/fstools.te @@ -1,5 +1,5 @@ -policy_module(fstools,1.10.0) +policy_module(fstools, 1.10.1) ######################################## #