diff options
| author |   Chris PeBenito <pebenito@ieee.org> | 2024-08-19 08:18:52 -0400 |
|---|---|---|
| committer |   Jason Zaman <perfinion@gentoo.org> | 2024-09-21 15:28:29 -0700 |
| commit | bf2e1aefe8bc29b3e5191ddd395193e12106c0c7 (patch) | |
| tree | 03231d03f276cb5129d8b749f6eb43fa0a96508a | |
| parent | Adding SE Policy rules to allow usage of unix stream sockets by dbus and blue... (diff) | |
| download | hardened-refpolicy-bf2e1aefe8bc29b3e5191ddd395193e12106c0c7.tar.gz hardened-refpolicy-bf2e1aefe8bc29b3e5191ddd395193e12106c0c7.tar.bz2 hardened-refpolicy-bf2e1aefe8bc29b3e5191ddd395193e12106c0c7.zip | |
bluetooth: Move line.
Signed-off-by: Chris PeBenito <pebenito@ieee.org>
Signed-off-by: Jason Zaman <perfinion@gentoo.org>
| -rw-r--r-- | policy/modules/services/bluetooth.te | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/policy/modules/services/bluetooth.te b/policy/modules/services/bluetooth.te index baf1016f..f981af2a 100644 --- a/policy/modules/services/bluetooth.te +++ b/policy/modules/services/bluetooth.te @@ -77,9 +77,6 @@ filetrans_pattern(bluetooth_t, bluetooth_conf_t, bluetooth_conf_rw_t, { dir file allow bluetooth_t bluetooth_lock_t:file manage_file_perms; files_lock_filetrans(bluetooth_t, bluetooth_lock_t, file) -bluetooth_use_inherited_helper_stream_sockets(bluetooth_t) - - manage_dirs_pattern(bluetooth_t, bluetooth_tmp_t, bluetooth_tmp_t) manage_files_pattern(bluetooth_t, bluetooth_tmp_t, bluetooth_tmp_t) files_tmp_filetrans(bluetooth_t, bluetooth_tmp_t, { dir file }) @@ -94,6 +91,8 @@ files_runtime_filetrans(bluetooth_t, bluetooth_runtime_t, { file sock_file }) can_exec(bluetooth_t, bluetooth_helper_exec_t) +bluetooth_use_inherited_helper_stream_sockets(bluetooth_t) + kernel_read_kernel_sysctls(bluetooth_t) kernel_read_system_state(bluetooth_t) kernel_read_network_state(bluetooth_t) |