Bump module versions for release.

[people/stevee/selinux-policy.git] / policy / modules / apps / mono.te

diff --git a/policy/modules/apps/mono.te b/policy/modules/apps/mono.te
index 5c79af6345b7a63c645f48bcec12043aa30498b0..76c77a110597b548a2236002886ebd2e5beb23ff 100644 (file)
--- a/policy/modules/apps/mono.te
+++ b/policy/modules/apps/mono.te
@@ -1,5 +1,5 @@
 
-policy_module(mono, 1.5.1)
+policy_module(mono, 1.7.0)
 
 ########################################
 #
@@ -8,6 +8,7 @@ policy_module(mono, 1.5.1)
 
 type mono_t;
 type mono_exec_t;
+application_type(mono_t)
 init_system_domain(mono_t, mono_exec_t)
 
 ########################################
@@ -15,11 +16,11 @@ init_system_domain(mono_t, mono_exec_t)
 # Local policy
 #
 
-allow mono_t self:process { execheap execmem };
+allow mono_t self:process { ptrace signal getsched execheap execmem execstack };
 
 init_dbus_chat_script(mono_t)
 
-userdom_user_home_dir_filetrans_user_home_content(mono_t,{ dir file lnk_file fifo_file sock_file })
+userdom_user_home_dir_filetrans_user_home_content(mono_t, { dir file lnk_file fifo_file sock_file })
 
 optional_policy(`
        avahi_dbus_chat(mono_t)
@@ -42,7 +43,11 @@ optional_policy(`
 ')
 
 optional_policy(`
-       unconfined_domain_noaudit(mono_t)
+       unconfined_domain(mono_t)
        unconfined_dbus_chat(mono_t)
        unconfined_dbus_connect(mono_t)
 ')
+
+optional_policy(`
+       xserver_rw_shm(mono_t)
+')