From: guido@trentalancia.com (Guido Trentalancia) Date: Wed, 21 Jun 2017 17:28:53 +0200 Subject: [refpolicy] [PATCH] userdomain: rename USB write boolean Message-ID: <1498058933.4583.3.camel@trentalancia.com> To: refpolicy@oss.tresys.com List-Id: refpolicy.oss.tresys.com Rename a userdomain boolean to a more meaningful name and improve its description. Signed-off-by: Guido Trentalancia --- policy/modules/system/userdomain.if | 4 ++-- policy/modules/system/userdomain.te | 6 +++--- 2 files changed, 5 insertions(+), 5 deletions(-) diff -pru a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if --- a/policy/modules/system/userdomain.if 2017-04-26 17:47:14.081423048 +0200 +++ b/policy/modules/system/userdomain.if 2017-06-21 17:12:39.854541009 +0200 @@ -598,7 +598,7 @@ template(`userdom_common_user_template', seutil_dontaudit_signal_newrole($1_t) ifndef(`enable_mls',` - tunable_policy(`user_write_removable',` + tunable_policy(`user_write_usb',` # Read/write floppies and other removable devices storage_raw_read_removable_device($1_t) storage_raw_write_removable_device($1_t) @@ -625,7 +625,7 @@ template(`userdom_common_user_template', term_getattr_all_ttys($1_t) ') - tunable_policy(`user_write_removable',` + tunable_policy(`user_write_usb',` # Read/write USB devices (e.g. external removable USB mass storage devices) dev_rw_generic_usb_dev($1_t) ',` diff -pru a/policy/modules/system/userdomain.te b/policy/modules/system/userdomain.te --- a/policy/modules/system/userdomain.te 2017-04-26 17:47:14.081423048 +0200 +++ b/policy/modules/system/userdomain.te 2017-06-21 17:06:00.276542643 +0200 @@ -51,12 +51,12 @@ gen_tunable(user_exec_noexattrfile, fals ## ##

-## Allow user to write files on removable +## Allow user to write files on USB ## devices (e.g. external USB memory -## devices or floppies) +## devices or floppies, scanners) ##

## -gen_tunable(user_write_removable, false) +gen_tunable(user_write_usb, false) ## ##