Fixed an allow that should have been a dontaudit

2005-10-24 22:20:04 +00:00 · 2005-10-24 22:20:04 +00:00 · d2c57395ab
commit d2c57395ab
parent 977b1d65f5
2 changed files with 4 additions and 4 deletions
--- a/refpolicy/policy/modules/services/bluetooth.if
+++ b/refpolicy/policy/modules/services/bluetooth.if
@ -8,11 +8,11 @@
 ##	Domain allowed access.
 ## </param>
 #
-interface(`bluetooth_read_helper_files',`
+interface(`bluetooth_dontaudit_read_helper_files',`
 	gen_require(`
 		type bluetooth_helper_t;
 	')

-	allow $1 bluetooth_helper_t:dir search;
-	allow $1 bluetooth_helper_t:file { read getattr };
+	dontaudit $1 bluetooth_helper_t:dir search;
+	dontaudit $1 bluetooth_helper_t:file { read getattr };
 ')
--- a/refpolicy/policy/modules/services/networkmanager.te
+++ b/refpolicy/policy/modules/services/networkmanager.te
@ -112,7 +112,7 @@ ifdef(`targeted_policy', `
 ')

 optional_policy(`bluetooth.te',`
-	bluetooth_read_helper_files(NetworkManager_t)
+	bluetooth_dontaudit_read_helper_files(NetworkManager_t)
 ')

 optional_policy(`consoletype.te',`