From: domg472@gmail.com (Dominick Grift)
Date: Wed, 3 Mar 2010 16:10:56 +0100
Subject: [refpolicy] [ userdom patch 1/1] Fix userdom_write_user_tmp_sockets
 to use write_sock_file_perms to allow domains to open user_tmp_t
 sock_files.
Message-ID: <20100303151054.GA21923@localhost.localdomain>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

Signed-off-by: Dominick Grift <domg472@gmail.com>
---
:100644 100644 cd08bc3... adbe494... M	policy/modules/system/userdomain.if
 policy/modules/system/userdomain.if |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if
index cd08bc3..adbe494 100644
--- a/policy/modules/system/userdomain.if
+++ b/policy/modules/system/userdomain.if
@@ -2069,7 +2069,7 @@ interface(`userdom_write_user_tmp_sockets',`
 		type user_tmp_t;
 	')
 
-	allow $1 user_tmp_t:sock_file write;
+	allow $1 user_tmp_t:sock_file write_sock_file_perms;
 	files_search_tmp($1)
 ')
 
-- 
1.6.6.1

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
Url : http://oss.tresys.com/pipermail/refpolicy/attachments/20100303/8304a884/attachment.bin