summaryrefslogtreecommitdiff
path: root/policy/modules/apps/gpg.te
diff options
context:
space:
mode:
Diffstat (limited to 'policy/modules/apps/gpg.te')
-rw-r--r--policy/modules/apps/gpg.te12
1 files changed, 9 insertions, 3 deletions
diff --git a/policy/modules/apps/gpg.te b/policy/modules/apps/gpg.te
index ff18fc77..9d162a8e 100644
--- a/policy/modules/apps/gpg.te
+++ b/policy/modules/apps/gpg.te
@@ -1,5 +1,5 @@
-policy_module(gpg, 2.1.0)
+policy_module(gpg, 2.1.1)
########################################
#
@@ -92,6 +92,7 @@ corenet_sendrecv_all_client_packets(gpg_t)
dev_read_rand(gpg_t)
dev_read_urand(gpg_t)
+dev_read_generic_usb_dev(gpg_t)
fs_getattr_xattr_fs(gpg_t)
@@ -145,13 +146,18 @@ files_read_etc_files(gpg_helper_t)
auth_use_nsswitch(gpg_helper_t)
userdom_use_user_terminals(gpg_helper_t)
+# sign/encrypt user files
+userdom_manage_user_tmp_files(gpg_t)
+userdom_manage_user_home_content_files(gpg_t)
tunable_policy(`use_nfs_home_dirs',`
- fs_dontaudit_rw_nfs_files(gpg_helper_t)
+ fs_manage_nfs_dirs(gpg_t)
+ fs_manage_nfs_files(gpg_t)
')
tunable_policy(`use_samba_home_dirs',`
- fs_dontaudit_rw_cifs_files(gpg_helper_t)
+ fs_manage_cifs_dirs(gpg_t)
+ fs_manage_cifs_files(gpg_t)
')
optional_policy(`
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-07 10:07:44 +0000