From cd07eaecf04340fd01c1112095ed7c9f3aeaebd6 Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Feb 03 2006 16:31:53 +0000 Subject: remove redundant userdom_manage_generic_user_home_dir interface --- diff --git a/refpolicy/policy/modules/admin/firstboot.te b/refpolicy/policy/modules/admin/firstboot.te index e6ed46c..7de27d0 100644 --- a/refpolicy/policy/modules/admin/firstboot.te +++ b/refpolicy/policy/modules/admin/firstboot.te @@ -99,14 +99,13 @@ modutils_read_module_config(firstboot_t) modutils_read_module_deps(firstboot_t) # Add/remove user home directories -userdom_filetrans_generic_user_home_dir(firstboot_t) -userdom_manage_generic_user_home_dir(firstboot_t) -userdom_filetrans_generic_user_home(firstboot_t,{ dir file lnk_file fifo_file sock_file }) userdom_manage_generic_user_home_dirs(firstboot_t) userdom_manage_generic_user_home_files(firstboot_t) userdom_manage_generic_user_home_symlinks(firstboot_t) userdom_manage_generic_user_home_pipes(firstboot_t) userdom_manage_generic_user_home_sockets(firstboot_t) +userdom_filetrans_generic_user_home_dir(firstboot_t) +userdom_filetrans_generic_user_home(firstboot_t,{ dir file lnk_file fifo_file sock_file }) ifdef(`targeted_policy',` unconfined_domtrans(firstboot_t) diff --git a/refpolicy/policy/modules/admin/usermanage.te b/refpolicy/policy/modules/admin/usermanage.te index c1ae31f..3c3ade8 100644 --- a/refpolicy/policy/modules/admin/usermanage.te +++ b/refpolicy/policy/modules/admin/usermanage.te @@ -503,7 +503,7 @@ userdom_use_unpriv_users_fd(useradd_t) userdom_dontaudit_search_sysadm_home_dir(useradd_t) # Add/remove user home directories userdom_filetrans_generic_user_home_dir(useradd_t) -userdom_manage_generic_user_home_dir(useradd_t) +userdom_manage_generic_user_home_dirs(useradd_t) userdom_filetrans_generic_user_home(useradd_t,notdevfile_class_set) mta_manage_spool(useradd_t) diff --git a/refpolicy/policy/modules/system/userdomain.if b/refpolicy/policy/modules/system/userdomain.if index 9e86216..b66833e 100644 --- a/refpolicy/policy/modules/system/userdomain.if +++ b/refpolicy/policy/modules/system/userdomain.if @@ -3454,23 +3454,6 @@ interface(`userdom_search_generic_user_home_dir',` ######################################## ## -## Create, read, write, and delete -## generic user home directories. -## -## -## Domain allowed access. -## -# -interface(`userdom_manage_generic_user_home_dir',` - gen_require(` - type user_home_dir_t; - ') - - allow $1 user_home_dir_t:dir create_dir_perms; -') - -######################################## -## ## Create objects in generic user home directories ## with automatic file type transition. ##