Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: "Anthony G. Basile (blueness)" <blueness@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] gentoo-x86 commit in sec-policy/selinux-mozilla/files: fix-mozilla.patch
Date: Sat, 05 Feb 2011 20:42:47
Message-Id: 20110205204105.5A5562006E@flycatcher.gentoo.org
1 blueness 11/02/05 20:41:05
2
3 Added: fix-mozilla.patch
4 Log:
5 Bulk addition of new selinux policies.
6
7 (Portage version: 2.1.9.25/cvs/Linux x86_64)
8
9 Revision Changes Path
10 1.1 sec-policy/selinux-mozilla/files/fix-mozilla.patch
11
12 file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sec-policy/selinux-mozilla/files/fix-mozilla.patch?rev=1.1&view=markup
13 plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/sec-policy/selinux-mozilla/files/fix-mozilla.patch?rev=1.1&content-type=text/plain
14
15 Index: fix-mozilla.patch
16 ===================================================================
17 --- apps/mozilla.te 2010-12-13 15:11:01.000000000 +0100
18 +++ ../../../refpolicy/policy/modules/apps/mozilla.te 2011-01-15 16:27:48.031000003 +0100
19 @@ -33,6 +33,10 @@
20 files_tmpfs_file(mozilla_tmpfs_t)
21 ubac_constrained(mozilla_tmpfs_t)
22
23 +type mozilla_tmp_t;
24 +files_tmp_file(mozilla_tmp_t)
25 +ubac_constrained(mozilla_tmp_t)
26 +
27 ########################################
28 #
29 # Local policy
30 @@ -68,6 +72,12 @@
31 manage_sock_files_pattern(mozilla_t, mozilla_tmpfs_t, mozilla_tmpfs_t)
32 fs_tmpfs_filetrans(mozilla_t, mozilla_tmpfs_t, { file lnk_file sock_file fifo_file })
33
34 +manage_files_pattern(mozilla_t, mozilla_tmp_t, mozilla_tmp_t)
35 +manage_dirs_pattern(mozilla_t, mozilla_tmp_t, mozilla_tmp_t)
36 +files_tmp_filetrans(mozilla_t, mozilla_tmp_t, { file dir } )
37 +userdom_manage_user_tmp_files(mozilla_t)
38 +userdom_manage_user_tmp_sockets(mozilla_t)
39 +
40 kernel_read_kernel_sysctls(mozilla_t)
41 kernel_read_network_state(mozilla_t)
42 # Access /proc, sysctl
43 @@ -143,6 +153,7 @@
44
45 userdom_use_user_ptys(mozilla_t)
46
47 +
48 xserver_user_x_domain_template(mozilla, mozilla_t, mozilla_tmpfs_t)
49 xserver_dontaudit_read_xdm_tmp_files(mozilla_t)
50 xserver_dontaudit_getattr_xdm_tmp_sockets(mozilla_t)
51 @@ -266,3 +277,7 @@
52 optional_policy(`
53 thunderbird_domtrans(mozilla_t)
54 ')
55 +
56 +optional_policy(`
57 + alsa_read_rw_config(mozilla_t)
58 +')
59 --- apps/mozilla.fc 2010-08-03 15:11:03.000000000 +0200
60 +++ ../../../refpolicy/policy/modules/apps/mozilla.fc 2011-01-02 22:23:34.407000019 +0100
61 @@ -27,3 +27,12 @@
62 /usr/lib(64)?/[^/]*firefox[^/]*/firefox-bin -- gen_context(system_u:object_r:mozilla_exec_t,s0)
63 /usr/lib/[^/]*firefox[^/]*/firefox -- gen_context(system_u:object_r:mozilla_exec_t,s0)
64 /usr/lib64/[^/]*firefox[^/]*/firefox -- gen_context(system_u:object_r:mozilla_exec_t,s0)
65 +
66 +ifdef(`distro_gentoo',`
67 +/usr/bin/firefox-bin -- gen_context(system_u:object_r:mozilla_exec_t,s0)
68 +/opt/firefox/libxul\.so -- gen_context(system_u:object_r:textrel_shlib_t,s0)
69 +/opt/firefox/firefox -- gen_context(system_u:object_r:mozilla_exec_t,s0)
70 +/opt/firefox/run-mozilla.sh -- gen_context(system_u:object_r:mozilla_exec_t,s0)
71 +/opt/firefox/firefox-bin -- gen_context(system_u:object_r:mozilla_exec_t,s0)
72 +/opt/firefox/plugin-container -- gen_context(system_u:object_r:mozilla_exec_t,s0)
73 +')
Report Message
Find on MARC Find on Google Groups