From 5ed061769ebdce06e56fb7131674b2bc382ca05b Mon Sep 17 00:00:00 2001
From: Chris PeBenito <cpebenito@tresys.com>
Date: Nov 24 2009 16:48:39 +0000
Subject: Application patch from Dan Walsh.


---

diff --git a/policy/modules/system/application.if b/policy/modules/system/application.if
index 8e4b8c2..06e7b0a 100644
--- a/policy/modules/system/application.if
+++ b/policy/modules/system/application.if
@@ -99,5 +99,23 @@ interface(`application_exec_all',`
 interface(`application_domain',`
 	application_type($1)
 	application_executable_file($2)
-	domain_entry_file($1,$2)
+	domain_entry_file($1, $2)
+')
+
+########################################
+## <summary>
+##	Send signull to all application domains.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+#
+interface(`application_signull',`
+	gen_require(`
+		attribute application_domain_type;
+	')
+
+	allow $1 application_domain_type:process signull;
 ')
diff --git a/policy/modules/system/application.te b/policy/modules/system/application.te
index c80f2ce..5fa76a6 100644
--- a/policy/modules/system/application.te
+++ b/policy/modules/system/application.te
@@ -1,5 +1,5 @@
 
-policy_module(application, 1.1.0)
+policy_module(application, 1.1.1)
 
 # Attribute of user applications
 attribute application_domain_type;
@@ -11,3 +11,7 @@ optional_policy(`
 	ssh_sigchld(application_domain_type)
 	ssh_rw_stream_sockets(application_domain_type)
 ')
+
+optional_policy(`
+	sudo_sigchld(application_domain_type)
+')