Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--policy/modules/contrib/alsa.if10
-rw-r--r--policy/modules/contrib/alsa.te2
-rw-r--r--policy/modules/contrib/chromium.te2
-rw-r--r--policy/modules/contrib/mailman.te2
-rw-r--r--policy/modules/contrib/mozilla.te6
-rw-r--r--policy/modules/contrib/mplayer.te2
6 files changed, 20 insertions, 4 deletions
diff --git a/policy/modules/contrib/alsa.if b/policy/modules/contrib/alsa.if
index c88e115bb..876afafea 100644
--- a/policy/modules/contrib/alsa.if
+++ b/policy/modules/contrib/alsa.if
@@ -9,15 +9,25 @@
## Domain that links with alsa
## </summary>
## </param>
+## <param name="tmpfstype">
+## <summary>
+## Tmpfs type used for shared memory of the given domain
+## </summary>
+## </param>
#
interface(`alsa_domain',`
gen_require(`
attribute alsadomain;
+ attribute alsatmpfsfile;
')
typeattribute $1 alsadomain;
+ typeattribute $2 alsatmpfsfile;
+ # Perhaps we can introduce a tunable for the next?
allow $1 alsadomain:sem create_sem_perms;
+ allow $1 alsadomain:shm rw_shm_perms;
+ allow $1 alsatmpfsfile:file rw_file_perms;
')
########################################
diff --git a/policy/modules/contrib/alsa.te b/policy/modules/contrib/alsa.te
index 08b3f7774..abcd551e0 100644
--- a/policy/modules/contrib/alsa.te
+++ b/policy/modules/contrib/alsa.te
@@ -7,6 +7,8 @@ policy_module(alsa, 1.11.0)
attribute alsadomain;
+attribute alsatmpfsfile;
+
type alsa_t, alsadomain;
type alsa_exec_t;
init_system_domain(alsa_t, alsa_exec_t)
diff --git a/policy/modules/contrib/chromium.te b/policy/modules/contrib/chromium.te
index 6b76a17b4..a8c7ebe67 100644
--- a/policy/modules/contrib/chromium.te
+++ b/policy/modules/contrib/chromium.te
@@ -177,7 +177,7 @@ tunable_policy(`chromium_manage_user_content',`
')
optional_policy(`
- alsa_domain(chromium_t)
+ alsa_domain(chromium_t, chromium_tmpfs_t)
alsa_read_rw_config(chromium_t)
')
diff --git a/policy/modules/contrib/mailman.te b/policy/modules/contrib/mailman.te
index 80b69b93c..22265f0d4 100644
--- a/policy/modules/contrib/mailman.te
+++ b/policy/modules/contrib/mailman.te
@@ -125,4 +125,4 @@ optional_policy(`
optional_policy(`
su_exec(mailman_queue_t)
-')
+') \ No newline at end of file
diff --git a/policy/modules/contrib/mozilla.te b/policy/modules/contrib/mozilla.te
index 9031a3ea7..93bbf7b57 100644
--- a/policy/modules/contrib/mozilla.te
+++ b/policy/modules/contrib/mozilla.te
@@ -459,7 +459,7 @@ tunable_policy(`use_samba_home_dirs',`
')
optional_policy(`
- alsa_domain(mozilla_plugin_t)
+ alsa_domain(mozilla_plugin_t, mozilla_plugin_tmpfs_t)
alsa_read_rw_config(mozilla_plugin_t)
alsa_read_home_files(mozilla_plugin_t)
')
@@ -471,6 +471,10 @@ optional_policy(`
')
optional_policy(`
+ flash_manage_home(mozilla_plugin_t)
+')
+
+optional_policy(`
gnome_manage_config(mozilla_plugin_t)
')
diff --git a/policy/modules/contrib/mplayer.te b/policy/modules/contrib/mplayer.te
index ff237dc53..93ad9a582 100644
--- a/policy/modules/contrib/mplayer.te
+++ b/policy/modules/contrib/mplayer.te
@@ -297,7 +297,7 @@ tunable_policy(`use_samba_home_dirs',`
')
optional_policy(`
- alsa_domain(mplayer_t)
+ alsa_domain(mplayer_t, mplayer_tmpfs_t)
alsa_read_rw_config(mplayer_t)
')