trunk: Patch to add missing requirements in userdomain interfaces from Shintaro Fujiwara.

2007-09-17 18:04:35 +00:00 · 2007-09-17 18:04:35 +00:00 · 6f49b490b8
commit 6f49b490b8
parent 0cf6df55e5
3 changed files with 7 additions and 5 deletions
--- a/2
+++ b/2
@ -1,3 +1,5 @@
 - Patch to add missing requirements in userdomain interfaces from Shintaro
  Fujiwara.
 - Add tcpd_wrapped_domain() for services that use tcp wrappers.
 - Update MLS constraints from LSPP evaluated policy.
 - Allow initrc_t file descriptors to be inherited regardless of MLS level.
--- a/policy/modules/system/userdomain.if
+++ b/policy/modules/system/userdomain.if
@ -5076,7 +5076,7 @@ interface(`userdom_manage_generic_user_home_dirs',`
 #
 interface(`userdom_manage_generic_user_home_content_dirs',`
 	gen_require(`
-		type user_home_t;
+		type user_home_dir_t, user_home_t;
 	')
 	files_search_home($1)
@ -5194,7 +5194,7 @@ interface(`userdom_dontaudit_relabel_generic_user_home_content_files',`
 #
 interface(`userdom_manage_generic_user_home_content_symlinks',`
 	gen_require(`
-		type user_home_t;
+		type user_home_dir_t, user_home_t;
 	')
 	files_search_home($1)
@ -5214,7 +5214,7 @@ interface(`userdom_manage_generic_user_home_content_symlinks',`
 #
 interface(`userdom_manage_generic_user_home_content_pipes',`
 	gen_require(`
-		type user_home_t;
+		type user_home_dir_t, user_home_t;
 	')
 	files_search_home($1)
@ -5234,7 +5234,7 @@ interface(`userdom_manage_generic_user_home_content_pipes',`
 #
 interface(`userdom_manage_generic_user_home_content_sockets',`
 	gen_require(`
-		type user_home_t;
+		type user_home_dir_t, user_home_t;
 	')
 	files_search_home($1)
--- a/policy/modules/system/userdomain.te
+++ b/policy/modules/system/userdomain.te
@ -1,5 +1,5 @@
-policy_module(userdomain,2.3.1)
+policy_module(userdomain,2.3.2)
 gen_require(`
 	role sysadm_r, staff_r, user_r;