diff options
Diffstat (limited to 'policy/modules/apps/gpg.te')
-rw-r--r-- | policy/modules/apps/gpg.te | 12 |
1 files changed, 9 insertions, 3 deletions
diff --git a/policy/modules/apps/gpg.te b/policy/modules/apps/gpg.te index ff18fc77..9d162a8e 100644 --- a/policy/modules/apps/gpg.te +++ b/policy/modules/apps/gpg.te @@ -1,5 +1,5 @@ -policy_module(gpg, 2.1.0) +policy_module(gpg, 2.1.1) ######################################## # @@ -92,6 +92,7 @@ corenet_sendrecv_all_client_packets(gpg_t) dev_read_rand(gpg_t) dev_read_urand(gpg_t) +dev_read_generic_usb_dev(gpg_t) fs_getattr_xattr_fs(gpg_t) @@ -145,13 +146,18 @@ files_read_etc_files(gpg_helper_t) auth_use_nsswitch(gpg_helper_t) userdom_use_user_terminals(gpg_helper_t) +# sign/encrypt user files +userdom_manage_user_tmp_files(gpg_t) +userdom_manage_user_home_content_files(gpg_t) tunable_policy(`use_nfs_home_dirs',` - fs_dontaudit_rw_nfs_files(gpg_helper_t) + fs_manage_nfs_dirs(gpg_t) + fs_manage_nfs_files(gpg_t) ') tunable_policy(`use_samba_home_dirs',` - fs_dontaudit_rw_cifs_files(gpg_helper_t) + fs_manage_cifs_dirs(gpg_t) + fs_manage_cifs_files(gpg_t) ') optional_policy(` |