From: pebenito@ieee.org (Chris PeBenito)
Date: Tue, 10 Oct 2017 19:52:20 -0400
Subject: [refpolicy] [PATCH 2/2] dbus: read user home content files
In-Reply-To: <B09CBAA6-3AB2-4483-9456-F9E1549CCBC0@trentalancia.com>
References: <1507316441.20230.11.camel@trentalancia.com>
	<f2750f81-853e-ed6f-ac24-0cbc2c7b8907@ieee.org>
	<B09CBAA6-3AB2-4483-9456-F9E1549CCBC0@trentalancia.com>
Message-ID: <f4f02809-e7e6-88ac-1c59-9a7a66eb6cec@ieee.org>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On 10/09/2017 03:03 PM, Guido Trentalancia via refpolicy wrote:
> 
> 
> On the 9th of October 2017 19:56:00 CEST, Chris PeBenito <pebenito@ieee.org> wrote:
>> On 10/06/2017 03:00 PM, Guido Trentalancia via refpolicy wrote:
>>> Add permissions required to run Gnome (read user color management
>>> files).
>>>
>>> Signed-off-by: Guido Trentalancia <guido@trentalancia.com>
>>> ---
>>>    policy/modules/contrib/dbus.te |    2 ++
>>>    1 file changed, 2 insertions(+)
>>>
>>> --- a/policy/modules/contrib/dbus.te	2017-09-29 19:01:55.142455647
>> +0200
>>> +++ b/policy/modules/contrib/dbus.te	2017-10-06 00:04:54.272534259
>> +0200
>>> @@ -147,6 +147,8 @@ seutil_read_default_contexts(system_dbus
>>>    userdom_dontaudit_use_unpriv_user_fds(system_dbusd_t)
>>>    userdom_dontaudit_search_user_home_dirs(system_dbusd_t)
>>>    
>>> +userdom_read_user_home_content_files(system_dbusd_t)
>>
>> Does this not fit in with any of the XDG types instead?
> 
> I don't know, it needs to read a file in the ~/.local/share subdirectory.
> 
> Is there a new specific interface for that?

Nevermind, it hasn't been merged yet.


-- 
Chris PeBenito