Skip to content

Commit

Permalink
Merge pull request #609 from freedom1b2830/master
Browse files Browse the repository at this point in the history 
path marking for vlc(mplayer_t)
  • Loading branch information
@pebenito
pebenito committed Apr 6, 2023
2 parents 7815e48 + a098f2b commit 7831981
Show file tree
Hide file tree
Showing 2 changed files with 26 additions and 0 deletions.
4 changes: 4 additions & 0 deletions policy/modules/apps/mplayer.fc
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,7 @@
HOME_DIR/\.cache/vlc(/.*)? gen_context(system_u:object_r:mplayer_xdg_cache_t,s0)
HOME_DIR/\.config/vlc(/.*)? gen_context(system_u:object_r:mplayer_xdg_config_t,s0)
HOME_DIR/\.local/share/vlc(/.*)? gen_context(system_u:object_r:mplayer_xdg_data_t,s0)

HOME_DIR/\.mplayer(/.*)? gen_context(system_u:object_r:mplayer_home_t,s0)

/etc/mplayer(/.*)? gen_context(system_u:object_r:mplayer_etc_t,s0)
Expand Down
22 changes: 22 additions & 0 deletions policy/modules/apps/mplayer.te
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,15 @@ optional_policy(`
pulseaudio_tmpfs_content(mplayer_tmpfs_t)
')

type mplayer_xdg_cache_t;
files_type(mplayer_xdg_cache_t)

type mplayer_xdg_config_t;
files_type(mplayer_xdg_config_t)

type mplayer_xdg_data_t;
files_type(mplayer_xdg_data_t)

########################################
#
# Mencoder local policy
Expand Down Expand Up @@ -148,6 +157,18 @@ manage_fifo_files_pattern(mplayer_t, mplayer_tmpfs_t, mplayer_tmpfs_t)
manage_sock_files_pattern(mplayer_t, mplayer_tmpfs_t, mplayer_tmpfs_t)
fs_tmpfs_filetrans(mplayer_t, mplayer_tmpfs_t,{ dir file lnk_file sock_file fifo_file })

manage_dirs_pattern(mplayer_t, mplayer_xdg_cache_t, mplayer_xdg_cache_t)
manage_files_pattern(mplayer_t, mplayer_xdg_cache_t, mplayer_xdg_cache_t)
xdg_cache_filetrans(mplayer_t, mplayer_xdg_cache_t, dir, "vlc")

manage_dirs_pattern(mplayer_t, mplayer_xdg_config_t, mplayer_xdg_config_t)
manage_files_pattern(mplayer_t, mplayer_xdg_config_t, mplayer_xdg_config_t)
xdg_config_filetrans(mplayer_t, mplayer_xdg_config_t, dir, "vlc")

manage_dirs_pattern(mplayer_t, mplayer_xdg_data_t, mplayer_xdg_data_t)
manage_files_pattern(mplayer_t, mplayer_xdg_data_t, mplayer_xdg_data_t)
xdg_data_filetrans(mplayer_t, mplayer_xdg_data_t, dir, "vlc")

kernel_dontaudit_list_unlabeled(mplayer_t)
kernel_dontaudit_getattr_unlabeled_files(mplayer_t)
kernel_dontaudit_read_unlabeled_files(mplayer_t)
Expand Down Expand Up @@ -183,6 +204,7 @@ files_read_non_security_files(mplayer_t)
files_list_home(mplayer_t)
files_read_etc_runtime_files(mplayer_t)
files_read_usr_files(mplayer_t)
files_map_usr_files(mplayer_t)

fs_getattr_all_fs(mplayer_t)
fs_search_auto_mountpoints(mplayer_t)
Expand Down

0 comments on commit 7831981

Please sign in to comment.