[2/2] dbus: Add filetrans for /tmp/dbus-* session socket

Message ID	20211121203231.3625-2-jason@perfinion.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <selinux-owner@kernel.org> From: Jason Zaman <jason@perfinion.com> To: selinux@vger.kernel.org Cc: Jason Zaman <jason@perfinion.com> Subject: [PATCH 2/2] dbus: Add filetrans for /tmp/dbus-* session socket Date: Sun, 21 Nov 2021 12:32:31 -0800 Message-Id: <20211121203231.3625-2-jason@perfinion.com> In-Reply-To: <20211121203231.3625-1-jason@perfinion.com> References: <20211121203231.3625-1-jason@perfinion.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	[1/2] selinux: Add map perms \| expand [1/2] selinux: Add map perms [2/2] dbus: Add filetrans for /tmp/dbus-* session socket

Message ID

20211121203231.3625-2-jason@perfinion.com (mailing list archive)

State

New, archived

Headers

From: Jason Zaman <jason@perfinion.com>
To: selinux@vger.kernel.org
Cc: Jason Zaman <jason@perfinion.com>
Subject: [PATCH 2/2] dbus: Add filetrans for /tmp/dbus-* session socket
Date: Sun, 21 Nov 2021 12:32:31 -0800
Message-Id: <20211121203231.3625-2-jason@perfinion.com>
In-Reply-To: <20211121203231.3625-1-jason@perfinion.com>
References: <20211121203231.3625-1-jason@perfinion.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk

Series

[1/2] selinux: Add map perms | expand

Commit Message

Jason Zaman Nov. 21, 2021, 8:32 p.m. UTC

Signed-off-by: Jason Zaman <jason@perfinion.com>
---
 policy/modules/services/dbus.te | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/policy/modules/services/dbus.te b/policy/modules/services/dbus.te
index f629d508d..576b29f03 100644
--- a/policy/modules/services/dbus.te
+++ b/policy/modules/services/dbus.te
@@ -247,7 +247,8 @@  userdom_user_home_dir_filetrans(session_bus_type, session_dbusd_home_t, dir, ".d
 
 manage_dirs_pattern(session_bus_type, session_dbusd_tmp_t, session_dbusd_tmp_t)
 manage_files_pattern(session_bus_type, session_dbusd_tmp_t, session_dbusd_tmp_t)
-files_tmp_filetrans(session_bus_type, session_dbusd_tmp_t, { dir file })
+manage_sock_files_pattern(session_bus_type, session_dbusd_tmp_t, session_dbusd_tmp_t)
+files_tmp_filetrans(session_bus_type, session_dbusd_tmp_t, { dir file sock_file })
 
 manage_dirs_pattern(session_bus_type, session_dbusd_runtime_t, session_dbusd_runtime_t)
 manage_files_pattern(session_bus_type, session_dbusd_runtime_t, session_dbusd_runtime_t)

[2/2] dbus: Add filetrans for /tmp/dbus-* session socket

Commit Message

Patch