From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from goalie.tycho.ncsc.mil (goalie [144.51.3.250]) by tarius.tycho.ncsc.mil (8.13.1/8.13.1) with ESMTP id p2ECNHC2025750 for ; Mon, 14 Mar 2011 08:23:17 -0400 Received: from qmta08.emeryville.ca.mail.comcast.net (localhost [127.0.0.1]) by msux-gh1-uea01.nsa.gov (8.12.10/8.12.10) with ESMTP id p2ECNFAo006799 for ; Mon, 14 Mar 2011 12:23:15 GMT Message-ID: <4D7E08AF.10107@tresys.com> Date: Mon, 14 Mar 2011 08:23:11 -0400 From: "Christopher J. PeBenito" MIME-Version: 1.0 To: Harry Ciao CC: sds@tycho.nsa.gov, selinux@tycho.nsa.gov Subject: Re: [PATCH 1/1] Files and dirs objects could retain user role. References: <1299828060-18411-1-git-send-email-qingtao.cao@windriver.com> <1299828060-18411-2-git-send-email-qingtao.cao@windriver.com> In-Reply-To: <1299828060-18411-2-git-send-email-qingtao.cao@windriver.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Sender: owner-selinux@tycho.nsa.gov List-Id: selinux@tycho.nsa.gov On 3/11/2011 2:20 AM, Harry Ciao wrote: > Provide an interface to have the newly created files or dirs objects > have a chance to retain its creator's role. > > Signed-off-by: Harry Ciao > --- > policy/modules/kernel/files.if | 32 ++++++++++++++++++++++++++++++++ > policy/modules/system/userdomain.if | 4 ++++ > 2 files changed, 36 insertions(+), 0 deletions(-) > > diff --git a/policy/modules/kernel/files.if b/policy/modules/kernel/files.if > index ed203b2..dbec8d3 100644 > --- a/policy/modules/kernel/files.if > +++ b/policy/modules/kernel/files.if > @@ -5844,3 +5844,35 @@ interface(`files_unconfined',` > > typeattribute $1 files_unconfined_type; > ') > + > +####################################### > +## > +## Allow files and dirs with specified type > +## retain its creator role. > +## > +## > +##

> +## Allow files and dirs with specified type > +## retain its creator role. > +##

> +## > +## > +## > +## The creator role > +## > +## > +## > +## > +## The new object type > +## > +## > +## > +# > +interface(`files_retain_creator_role',` > + gen_require(` > + attribute file_type; > + ') > + > + role_transition $1 $2 $1; > + role $1 types $2; > +') I see no reason for this to be an interface. > diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if > index 28b88de..dddc9e3 100644 > --- a/policy/modules/system/userdomain.if > +++ b/policy/modules/system/userdomain.if > @@ -245,6 +245,10 @@ interface(`userdom_manage_home_role',` > # cjp: this should probably be removed: > allow $2 user_home_dir_t:dir { manage_dir_perms relabel_dir_perms }; > > + # new files or dirs object created in user HOME directory > + # retain the creator role. > + files_retain_creator_role($1, user_home_t) > + > tunable_policy(`use_nfs_home_dirs',` > fs_manage_nfs_dirs($2) > fs_manage_nfs_files($2) -- Chris PeBenito Tresys Technology, LLC www.tresys.com | oss.tresys.com -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.