psss / rpms / selinux-policy

Forked from rpms/selinux-policy 5 years ago
Clone
Source Code
GIT

Blame wine.te

f10 f11 f12 f13 f14 f15 f16 f17 f18 f19 f20 f21 f22 f23 f24 f25 f26 f27 f28 f29 f7 f8 f9 master master-docker master_contrib private-master-atomic-policy private-master-migrate-to-var-lib-selinux requires tests
  1.   0190325c18c30d31145950c1eaf80d12fa6c9db3
  2.   wine.te
Blob History Raw
Chris PeBenito bbc40b5 
policy_module(wine, 1.10.0)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
########################################
Chris PeBenito 9401ae1 
#
Chris PeBenito 9401ae1 
# Declarations
Chris PeBenito 9401ae1 
#
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
## <desc>
Chris PeBenito 9401ae1 
##
Chris PeBenito 9401ae1 
##	Ignore wine mmap_zero errors.
Chris PeBenito 9401ae1 
##
Chris PeBenito 9401ae1 
## </desc>
Chris PeBenito 9401ae1 
gen_tunable(wine_mmap_zero_ignore, false)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
type wine_t;
Chris PeBenito 9401ae1 
type wine_exec_t;
Chris PeBenito 66b26ac 
userdom_user_application_domain(wine_t, wine_exec_t)
Chris PeBenito 9401ae1 
role system_r types wine_t;
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
type wine_tmp_t;
Chris PeBenito 66b26ac 
userdom_user_tmp_file(wine_tmp_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
########################################
Chris PeBenito 9401ae1 
#
Chris PeBenito 9401ae1 
# Local policy
Chris PeBenito 9401ae1 
#
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
allow wine_t self:process { execstack execmem execheap };
Chris PeBenito 9401ae1 
allow wine_t self:fifo_file manage_fifo_file_perms;
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
can_exec(wine_t, wine_exec_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
manage_dirs_pattern(wine_t, wine_tmp_t, wine_tmp_t)
Chris PeBenito 9401ae1 
manage_files_pattern(wine_t, wine_tmp_t, wine_tmp_t)
Chris PeBenito 9401ae1 
files_tmp_filetrans(wine_t, wine_tmp_t, { file dir })
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
domain_mmap_low(wine_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
files_execmod_all_files(wine_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
userdom_use_user_terminals(wine_t)
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
tunable_policy(`wine_mmap_zero_ignore',`
Chris PeBenito 9401ae1 
	dontaudit wine_t self:memprotect mmap_zero;
Chris PeBenito 9401ae1 
')
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
optional_policy(`
Chris PeBenito 9401ae1 
	hal_dbus_chat(wine_t)
Chris PeBenito 9401ae1 
')
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
optional_policy(`
Chris PeBenito 9401ae1 
	policykit_dbus_chat(wine_t)
Chris PeBenito 9401ae1 
')
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
optional_policy(`
Chris PeBenito 9401ae1 
	unconfined_domain(wine_t)
Chris PeBenito 9401ae1 
')
Chris PeBenito 9401ae1
Chris PeBenito 9401ae1 
optional_policy(`
Chris PeBenito 9401ae1 
	xserver_read_xdm_pid(wine_t)
Chris PeBenito 9401ae1 
	xserver_rw_shm(wine_t)
Chris PeBenito 9401ae1 
')
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.