2019-01-29 23:58:42 +00:00
|
|
|
policy_module(unprivuser, 2.9.1)
|
2008-04-29 13:58:34 +00:00
|
|
|
|
|
|
|
|
# this module should be named user, but that is
|
|
|
|
|
# a compile error since user is a keyword.
|
|
|
|
|
|
|
|
|
|
########################################
|
|
|
|
|
#
|
|
|
|
|
# Declarations
|
|
|
|
|
#
|
|
|
|
|
|
2014-09-15 17:22:27 +00:00
|
|
|
#role user_r;
|
2008-04-29 13:58:34 +00:00
|
|
|
|
|
|
|
|
userdom_unpriv_user_template(user)
|
|
|
|
|
|
2008-11-05 16:10:46 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
apache_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2011-09-02 13:20:23 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
git_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2019-01-31 02:58:52 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
modemmanager_dbus_chat(user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2008-11-05 16:10:46 +00:00
|
|
|
optional_policy(`
|
2010-07-21 14:39:57 +00:00
|
|
|
screen_role_template(user, user_r, user_t)
|
2008-11-05 16:10:46 +00:00
|
|
|
')
|
|
|
|
|
|
2010-10-26 06:34:11 +00:00
|
|
|
optional_policy(`
|
2010-11-01 15:22:07 +00:00
|
|
|
vlock_run(user_t, user_r)
|
2010-10-26 06:34:11 +00:00
|
|
|
')
|
|
|
|
|
|
2016-12-19 23:48:46 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
xscreensaver_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2008-11-05 16:10:46 +00:00
|
|
|
optional_policy(`
|
2010-07-21 14:39:57 +00:00
|
|
|
xserver_role(user_r, user_t)
|
2008-11-05 16:10:46 +00:00
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
ifndef(`distro_redhat',`
|
|
|
|
|
optional_policy(`
|
|
|
|
|
auth_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
bluetooth_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
cdrecord_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2019-01-28 08:46:49 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
chromium_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
cron_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
dbus_role_template(user, user_r, user_t)
|
2012-10-22 12:48:22 +00:00
|
|
|
|
|
|
|
|
optional_policy(`
|
|
|
|
|
gnome_role_template(user, user_r, user_t)
|
|
|
|
|
')
|
2013-11-09 09:45:16 +00:00
|
|
|
|
|
|
|
|
optional_policy(`
|
2016-12-16 15:59:31 +00:00
|
|
|
telepathy_role_template(user, user_r, user_t)
|
2013-11-09 09:45:16 +00:00
|
|
|
')
|
2014-04-05 18:01:21 +00:00
|
|
|
|
|
|
|
|
optional_policy(`
|
2016-12-16 15:59:31 +00:00
|
|
|
wm_role_template(user, user_r, user_t)
|
2014-04-05 18:01:21 +00:00
|
|
|
')
|
2010-07-21 14:39:57 +00:00
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2017-05-26 15:59:31 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
dirmngr_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
evolution_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
games_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
gift_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
gpg_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-12-16 17:33:07 +00:00
|
|
|
optional_policy(`
|
2011-09-02 13:20:54 +00:00
|
|
|
hadoop_role(user_r, user_t)
|
2010-12-16 17:33:07 +00:00
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
irc_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
java_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2017-05-13 21:15:27 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
libmtp_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
lockdev_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
lpd_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
mozilla_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
mplayer_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
mta_role(user_r, user_t)
|
|
|
|
|
')
|
2010-02-08 15:34:08 +00:00
|
|
|
|
2016-12-06 20:41:39 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
ooffice_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
postgresql_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2016-12-16 15:59:31 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
pulseaudio_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
pyzor_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
razor_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
rssh_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2019-01-03 23:20:14 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
sigrok_run(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
2011-07-29 12:50:24 +00:00
|
|
|
spamassassin_role(user_r, user_t)
|
2010-07-21 14:39:57 +00:00
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
ssh_role_template(user, user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
su_role_template(user, user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
sudo_role_template(user, user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2016-08-21 07:06:32 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
syncthing_role(user_r, user_t)
|
|
|
|
|
')
|
|
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
thunderbird_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
tvtime_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
uml_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
userhelper_role_template(user, user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
vmware_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
|
2010-07-21 14:39:57 +00:00
|
|
|
optional_policy(`
|
|
|
|
|
wireshark_role(user_r, user_t)
|
|
|
|
|
')
|
2008-11-05 16:10:46 +00:00
|
|
|
')
|
