From: dominick.grift@gmail.com (dominick.grift at gmail.com) Date: Sun, 14 Oct 2012 18:31:01 +0200 Subject: [refpolicy] [PATCH v1] Changes to the miscfiles policy module Message-ID: <507ae8e5.2354b40a.147c.024d@mx.google.com> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com From: Dominick Grift If you use the miscfiles policy module then you depend on the mandv policy module Change various miscfiles man interfaces to include relevant mandb interface calls Signed-off-by: Dominick Grift diff --git a/policy/modules/system/miscfiles.fc b/policy/modules/system/miscfiles.fc index 9116567..016974b 100644 --- a/policy/modules/system/miscfiles.fc +++ b/policy/modules/system/miscfiles.fc @@ -77,7 +77,6 @@ /var/cache/fontconfig(/.*)? gen_context(system_u:object_r:fonts_cache_t,s0) /var/cache/fonts(/.*)? gen_context(system_u:object_r:tetex_data_t,s0) -/var/cache/man(/.*)? gen_context(system_u:object_r:man_t,s0) /var/named/chroot/etc/pki(/.*)? gen_context(system_u:object_r:cert_t,s0) diff --git a/policy/modules/system/miscfiles.if b/policy/modules/system/miscfiles.if index 926ba65..0a504f0 100644 --- a/policy/modules/system/miscfiles.if +++ b/policy/modules/system/miscfiles.if @@ -491,6 +491,8 @@ allow $1 man_t:dir search_dir_perms; files_search_usr($1) + + mandb_search_cache($1) ') ######################################## @@ -531,6 +533,8 @@ allow $1 man_t:dir list_dir_perms; read_files_pattern($1, man_t, man_t) read_lnk_files_pattern($1, man_t, man_t) + + mandb_read_cache_content($1) ') ######################################## @@ -557,6 +561,8 @@ delete_dirs_pattern($1, man_t, man_t) delete_files_pattern($1, man_t, man_t) delete_lnk_files_pattern($1, man_t, man_t) + + mandb_delete_cache_content($1) ') ######################################## @@ -578,6 +584,8 @@ manage_dirs_pattern($1, man_t, man_t) manage_files_pattern($1, man_t, man_t) read_lnk_files_pattern($1, man_t, man_t) + + mandb_manage_cache_content($1) ') ########################################