[DSE-Dev] refpolicy: patch for gpg-agent
Václav Ovsík
vaclav.ovsik at i.cz
Thu Apr 24 08:14:07 UTC 2008
On Tue, Apr 15, 2008 at 03:26:02PM +0200, Václav Ovsík wrote:
...
> Another patch is attached with the specific type for home file
> (<ROLE>_gpg_agent_home_t). I hope, this is better than general write
...
I forgot file context... The attached patch adds one for fixed
filename `.gpg-agent-info'.
Best Regards
--
Zito
-------------- next part --------------
Index: policy/modules/apps/gpg.fc
===================================================================
--- policy/modules/apps/gpg.fc.orig 2008-04-24 09:03:05.000000000 +0200
+++ policy/modules/apps/gpg.fc 2008-04-24 09:05:22.000000000 +0200
@@ -1,4 +1,5 @@
HOME_DIR/\.gnupg(/.+)? gen_context(system_u:object_r:ROLE_gpg_secret_t,s0)
+HOME_DIR/\.gpg-agent-info gen_context(system_u:object_r:ROLE_gpg_agent_home_t,s0)
/usr/bin/gpg(2)? -- gen_context(system_u:object_r:gpg_exec_t,s0)
/usr/bin/gpg-agent -- gen_context(system_u:object_r:gpg_agent_exec_t,s0)
More information about the SELinux-devel
mailing list