From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id BE496138CDD for ; Wed, 27 May 2015 20:00:47 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 617D3E0875; Wed, 27 May 2015 20:00:46 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id C3065E0875 for ; Wed, 27 May 2015 20:00:45 +0000 (UTC) Received: from oystercatcher.gentoo.org (oystercatcher.gentoo.org [148.251.78.52]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 005C1340E80 for ; Wed, 27 May 2015 20:00:45 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id A3B72A10 for ; Wed, 27 May 2015 20:00:43 +0000 (UTC) From: "Jason Zaman" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Jason Zaman" Message-ID: <1432753278.1943815a94454b541f37128cec20da4ed015970b.perfinion@gentoo> Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/contrib/ X-VCS-Repository: proj/hardened-refpolicy X-VCS-Files: policy/modules/contrib/bitcoin.if X-VCS-Directories: policy/modules/contrib/ X-VCS-Committer: perfinion X-VCS-Committer-Name: Jason Zaman X-VCS-Revision: 1943815a94454b541f37128cec20da4ed015970b X-VCS-Branch: master Date: Wed, 27 May 2015 20:00:43 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: 8835b1ad-1878-4a7e-993b-7339463cfa83 X-Archives-Hash: 32d6e742f984e0efaedc21de4f341426 commit: 1943815a94454b541f37128cec20da4ed015970b Author: Jason Zaman perfinion com> AuthorDate: Sun May 24 12:04:00 2015 +0000 Commit: Jason Zaman gentoo org> CommitDate: Wed May 27 19:01:18 2015 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=1943815a bitcoin: use init_startstop_service interface in _admin The bitcoin_admin interfaces had rules for RedHat sysvinit. This replaces them with the interface init_startstop_service which can easily be changed for other init systems. policy/modules/contrib/bitcoin.if | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/policy/modules/contrib/bitcoin.if b/policy/modules/contrib/bitcoin.if index 922bc7c..9c7ca8d 100644 --- a/policy/modules/contrib/bitcoin.if +++ b/policy/modules/contrib/bitcoin.if @@ -26,10 +26,7 @@ interface(`bitcoin_admin',` allow $1 bitcoin_t:process { ptrace signal_perms }; ps_process_pattern($1, bitcoin_t) - init_labeled_script_domtrans($1, bitcoin_initrc_exec_t) - domain_system_change_exemption($1) - role_transition $2 bitcoin_initrc_exec_t system_r; - allow $2 system_r; + init_startstop_service($1, $2, bitcoin_t, bitcoin_initrc_exec_t) files_list_tmp($1) admin_pattern($1, bitcoin_tmp_t)