- Allow rpm to chat with networkmanager

This commit is contained in:
Daniel J Walsh 2007-10-17 19:55:53 +00:00
parent 195d643241
commit c912814a2a

View File

@ -5334,7 +5334,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/blue
optional_policy(` optional_policy(`
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/clamav.te serefpolicy-3.0.8/policy/modules/services/clamav.te diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/clamav.te serefpolicy-3.0.8/policy/modules/services/clamav.te
--- nsaserefpolicy/policy/modules/services/clamav.te 2007-09-12 10:34:50.000000000 -0400 --- nsaserefpolicy/policy/modules/services/clamav.te 2007-09-12 10:34:50.000000000 -0400
+++ serefpolicy-3.0.8/policy/modules/services/clamav.te 2007-10-03 11:10:24.000000000 -0400 +++ serefpolicy-3.0.8/policy/modules/services/clamav.te 2007-10-17 14:53:09.000000000 -0400
@@ -87,6 +87,7 @@ @@ -87,6 +87,7 @@
kernel_dontaudit_list_proc(clamd_t) kernel_dontaudit_list_proc(clamd_t)
kernel_read_sysctl(clamd_t) kernel_read_sysctl(clamd_t)
@ -7631,8 +7631,8 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mail
+files_type(mailscanner_spool_t) +files_type(mailscanner_spool_t)
diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.if serefpolicy-3.0.8/policy/modules/services/mta.if diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.if serefpolicy-3.0.8/policy/modules/services/mta.if
--- nsaserefpolicy/policy/modules/services/mta.if 2007-07-25 10:37:42.000000000 -0400 --- nsaserefpolicy/policy/modules/services/mta.if 2007-07-25 10:37:42.000000000 -0400
+++ serefpolicy-3.0.8/policy/modules/services/mta.if 2007-10-15 13:10:26.000000000 -0400 +++ serefpolicy-3.0.8/policy/modules/services/mta.if 2007-10-17 14:53:55.000000000 -0400
@@ -142,6 +142,12 @@ @@ -142,6 +142,11 @@
sendmail_create_log($1_mail_t) sendmail_create_log($1_mail_t)
') ')
@ -7640,12 +7640,11 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.
+ exim_read_logs($1_mail_t) + exim_read_logs($1_mail_t)
+ exim_manage_spool($1_mail_t) + exim_manage_spool($1_mail_t)
+ ') + ')
+
+ +
') ')
####################################### #######################################
@@ -226,6 +232,15 @@ @@ -226,6 +231,15 @@
tunable_policy(`use_samba_home_dirs',` tunable_policy(`use_samba_home_dirs',`
fs_manage_cifs_files($1_mail_t) fs_manage_cifs_files($1_mail_t)
fs_manage_cifs_symlinks($1_mail_t) fs_manage_cifs_symlinks($1_mail_t)
@ -7661,7 +7660,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.
') ')
optional_policy(` optional_policy(`
@@ -314,6 +329,24 @@ @@ -314,6 +328,24 @@
######################################## ########################################
## <summary> ## <summary>
@ -7686,7 +7685,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.
## Modified mailserver interface for ## Modified mailserver interface for
## sendmail daemon use. ## sendmail daemon use.
## </summary> ## </summary>
@@ -392,6 +425,7 @@ @@ -392,6 +424,7 @@
allow $1 mail_spool_t:dir list_dir_perms; allow $1 mail_spool_t:dir list_dir_perms;
create_files_pattern($1,mail_spool_t,mail_spool_t) create_files_pattern($1,mail_spool_t,mail_spool_t)
read_files_pattern($1,mail_spool_t,mail_spool_t) read_files_pattern($1,mail_spool_t,mail_spool_t)
@ -7694,7 +7693,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.
create_lnk_files_pattern($1,mail_spool_t,mail_spool_t) create_lnk_files_pattern($1,mail_spool_t,mail_spool_t)
read_lnk_files_pattern($1,mail_spool_t,mail_spool_t) read_lnk_files_pattern($1,mail_spool_t,mail_spool_t)
@@ -447,20 +481,18 @@ @@ -447,20 +480,18 @@
interface(`mta_send_mail',` interface(`mta_send_mail',`
gen_require(` gen_require(`
attribute mta_user_agent; attribute mta_user_agent;
@ -7721,7 +7720,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.
') ')
######################################## ########################################
@@ -595,6 +627,25 @@ @@ -595,6 +626,25 @@
files_search_etc($1) files_search_etc($1)
allow $1 etc_aliases_t:file { rw_file_perms setattr }; allow $1 etc_aliases_t:file { rw_file_perms setattr };
') ')