[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/contrib/

Thu, 30 Mar 2017 10:07:14 -0700 

commit:     0706c6d28350a9527ea67ae09b47fcf7ac3f0dc6
Author:     cgzones <cgzones <AT> googlemail <DOT> com>
AuthorDate: Wed Mar  8 18:34:49 2017 +0000
Commit:     Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Thu Mar 30 13:58:38 2017 +0000
URL:        
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=0706c6d2

vnstatd: update

use userdom_use_inherited_user_terminals()
deprecate interfaces:
  - transition to daemon domain
  - access to binary lib files

 policy/modules/contrib/vnstatd.if | 10 ++++++++++
 policy/modules/contrib/vnstatd.te |  2 +-
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/policy/modules/contrib/vnstatd.if 
b/policy/modules/contrib/vnstatd.if
index 2d863cb2..ee614638 100644
--- a/policy/modules/contrib/vnstatd.if
+++ b/policy/modules/contrib/vnstatd.if
@@ -56,6 +56,8 @@ interface(`vnstatd_run_vnstat',`
 ## </param>
 #
 interface(`vnstatd_domtrans',`
+       refpolicywarn(`$0($*) has been deprecated')
+
        gen_require(`
                type vnstatd_t, vnstatd_exec_t;
        ')
@@ -75,6 +77,8 @@ interface(`vnstatd_domtrans',`
 ## </param>
 #
 interface(`vnstatd_search_lib',`
+       refpolicywarn(`$0($*) has been deprecated')
+
        gen_require(`
                type vnstatd_var_lib_t;
        ')
@@ -95,6 +99,8 @@ interface(`vnstatd_search_lib',`
 ## </param>
 #
 interface(`vnstatd_manage_lib_dirs',`
+       refpolicywarn(`$0($*) has been deprecated')
+
        gen_require(`
                type vnstatd_var_lib_t;
        ')
@@ -114,6 +120,8 @@ interface(`vnstatd_manage_lib_dirs',`
 ## </param>
 #
 interface(`vnstatd_read_lib_files',`
+       refpolicywarn(`$0($*) has been deprecated')
+
        gen_require(`
                type vnstatd_var_lib_t;
        ')
@@ -134,6 +142,8 @@ interface(`vnstatd_read_lib_files',`
 ## </param>
 #
 interface(`vnstatd_manage_lib_files',`
+       refpolicywarn(`$0($*) has been deprecated')
+
        gen_require(`
                type vnstatd_var_lib_t;
        ')

diff --git a/policy/modules/contrib/vnstatd.te 
b/policy/modules/contrib/vnstatd.te
index 46419e83..69a93d0b 100644
--- a/policy/modules/contrib/vnstatd.te
+++ b/policy/modules/contrib/vnstatd.te
@@ -91,7 +91,7 @@ miscfiles_read_localization(vnstat_t)
 
 userdom_dontaudit_search_user_home_dirs(vnstat_t)
 
-userdom_use_user_terminals(vnstat_t)
+userdom_use_inherited_user_terminals(vnstat_t)
 
 optional_policy(`
        cron_system_entry(vnstat_t, vnstat_exec_t)

Reply via email to