commit: 897a8e2008bdb9d73db6d692272ca98e870a0566 Author: Chris PeBenito <pebenito <AT> ieee <DOT> org> AuthorDate: Wed Nov 23 03:18:02 2016 +0000 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org> CommitDate: Tue Dec 6 13:19:40 2016 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=897a8e20
authbind: Remove dead policy. policy/modules/contrib/authbind.fc | 3 --- policy/modules/contrib/authbind.if | 46 -------------------------------------- policy/modules/contrib/authbind.te | 34 ---------------------------- 3 files changed, 83 deletions(-) diff --git a/policy/modules/contrib/authbind.fc b/policy/modules/contrib/authbind.fc deleted file mode 100644 index 699ecc1..0000000 --- a/policy/modules/contrib/authbind.fc +++ /dev/null @@ -1,3 +0,0 @@ -/etc/authbind(/.*)? gen_context(system_u:object_r:authbind_etc_t,s0) - -/usr/lib/authbind/helper -- gen_context(system_u:object_r:authbind_exec_t,s0) diff --git a/policy/modules/contrib/authbind.if b/policy/modules/contrib/authbind.if deleted file mode 100644 index 40fdc75..0000000 --- a/policy/modules/contrib/authbind.if +++ /dev/null @@ -1,46 +0,0 @@ -## <summary>Tool for non-root processes to bind to reserved ports.</summary> - -######################################## -## <summary> -## Execute authbind in the authbind domain. -## </summary> -## <param name="domain"> -## <summary> -## Domain allowed to transition. -## </summary> -## </param> -# -interface(`authbind_domtrans',` - gen_require(` - type authbind_t, authbind_exec_t; - ') - - corecmd_search_bin($1) - domtrans_pattern($1, authbind_exec_t, authbind_t) -') - -######################################## -## <summary> -## Execute authbind in the authbind -## domain, and allow the specified -## role the authbind domain. -## </summary> -## <param name="domain"> -## <summary> -## Domain allowed to transition. -## </summary> -## </param> -## <param name="role"> -## <summary> -## Role allowed access. -## </summary> -## </param> -# -interface(`authbind_run',` - gen_require(` - attribute_role authbind_roles; - ') - - authbind_domtrans($1) - roleattribute $2 authbind_roles; -') diff --git a/policy/modules/contrib/authbind.te b/policy/modules/contrib/authbind.te deleted file mode 100644 index dd9d215..0000000 --- a/policy/modules/contrib/authbind.te +++ /dev/null @@ -1,34 +0,0 @@ -policy_module(authbind, 1.3.0) - -######################################## -# -# Declarations -# - -attribute_role authbind_roles; -roleattribute system_r authbind_roles; - -type authbind_t; -type authbind_exec_t; -application_domain(authbind_t, authbind_exec_t) -role authbind_roles types authbind_t; - -type authbind_etc_t; -files_config_file(authbind_etc_t) - -######################################## -# -# Local policy -# - -allow authbind_t self:capability net_bind_service; - -allow authbind_t authbind_etc_t:dir list_dir_perms; -exec_files_pattern(authbind_t, authbind_etc_t, authbind_etc_t) -read_lnk_files_pattern(authbind_t, authbind_etc_t, authbind_etc_t) - -files_list_etc(authbind_t) - -term_use_console(authbind_t) - -logging_send_syslog_msg(authbind_t)
