aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorChris PeBenito <pebenito@ieee.org>2024-08-19 08:18:52 -0400
committerJason Zaman <perfinion@gentoo.org>2024-09-21 15:28:29 -0700
commitbf2e1aefe8bc29b3e5191ddd395193e12106c0c7 (patch)
tree03231d03f276cb5129d8b749f6eb43fa0a96508a /policy/modules/services
parentAdding SE Policy rules to allow usage of unix stream sockets by dbus and blue... (diff)
downloadhardened-refpolicy-bf2e1aefe8bc29b3e5191ddd395193e12106c0c7.tar.gz
hardened-refpolicy-bf2e1aefe8bc29b3e5191ddd395193e12106c0c7.tar.bz2
hardened-refpolicy-bf2e1aefe8bc29b3e5191ddd395193e12106c0c7.zip
bluetooth: Move line.
Signed-off-by: Chris PeBenito <pebenito@ieee.org> Signed-off-by: Jason Zaman <perfinion@gentoo.org>
Diffstat (limited to 'policy/modules/services')
-rw-r--r--policy/modules/services/bluetooth.te5
1 files changed, 2 insertions, 3 deletions
diff --git a/policy/modules/services/bluetooth.te b/policy/modules/services/bluetooth.te
index baf1016f..f981af2a 100644
--- a/policy/modules/services/bluetooth.te
+++ b/policy/modules/services/bluetooth.te
@@ -77,9 +77,6 @@ filetrans_pattern(bluetooth_t, bluetooth_conf_t, bluetooth_conf_rw_t, { dir file
allow bluetooth_t bluetooth_lock_t:file manage_file_perms;
files_lock_filetrans(bluetooth_t, bluetooth_lock_t, file)
-bluetooth_use_inherited_helper_stream_sockets(bluetooth_t)
-
-
manage_dirs_pattern(bluetooth_t, bluetooth_tmp_t, bluetooth_tmp_t)
manage_files_pattern(bluetooth_t, bluetooth_tmp_t, bluetooth_tmp_t)
files_tmp_filetrans(bluetooth_t, bluetooth_tmp_t, { dir file })
@@ -94,6 +91,8 @@ files_runtime_filetrans(bluetooth_t, bluetooth_runtime_t, { file sock_file })
can_exec(bluetooth_t, bluetooth_helper_exec_t)
+bluetooth_use_inherited_helper_stream_sockets(bluetooth_t)
+
kernel_read_kernel_sysctls(bluetooth_t)
kernel_read_system_state(bluetooth_t)
kernel_read_network_state(bluetooth_t)