Bump module versions for release.

[people/stevee/selinux-policy.git] / policy / modules / apps / mono.te

diff --git a/policy/modules/apps/mono.te b/policy/modules/apps/mono.te
index c924b1653c86c8444c3245fce12cd43594e0514e..76c77a110597b548a2236002886ebd2e5beb23ff 100644 (file)
--- a/policy/modules/apps/mono.te
+++ b/policy/modules/apps/mono.te
@@ -1,5 +1,5 @@
 
-policy_module(mono,1.1.4)
+policy_module(mono, 1.7.0)
 
 ########################################
 #
@@ -8,40 +8,46 @@ policy_module(mono,1.1.4)
 
 type mono_t;
 type mono_exec_t;
-init_system_domain(mono_t,mono_exec_t)
+application_type(mono_t)
+init_system_domain(mono_t, mono_exec_t)
 
 ########################################
 #
 # Local policy
 #
 
-ifdef(`targeted_policy',`
-       allow mono_t self:process { execheap execmem };
+allow mono_t self:process { ptrace signal getsched execheap execmem execstack };
 
-       unconfined_domain_noaudit(mono_t)
-       unconfined_dbus_chat(mono_t)
+init_dbus_chat_script(mono_t)
 
-       userdom_generic_user_home_dir_filetrans_generic_user_home_content(mono_t,{ dir file lnk_file fifo_file sock_file })
+userdom_user_home_dir_filetrans_user_home_content(mono_t, { dir file lnk_file fifo_file sock_file })
 
-       init_dbus_chat_script(mono_t)
+optional_policy(`
+       avahi_dbus_chat(mono_t)
+')
 
-       optional_policy(`
-               avahi_dbus_chat(mono_t)
-       ')
+optional_policy(`
+       cups_dbus_chat(mono_t)
+')
 
-       optional_policy(`
-               cups_dbus_chat(mono_t)
-       ')
+optional_policy(`
+       hal_dbus_chat(mono_t)
+')
 
-       optional_policy(`
-               hal_dbus_chat(mono_t)
-       ')
+optional_policy(`
+       networkmanager_dbus_chat(mono_t)
+')
 
-       optional_policy(`
-               networkmanager_dbus_chat(mono_t)
-       ')
+optional_policy(`
+       rpm_dbus_chat(mono_t)
+')
+
+optional_policy(`
+       unconfined_domain(mono_t)
+       unconfined_dbus_chat(mono_t)
+       unconfined_dbus_connect(mono_t)
+')
 
-       optional_policy(`
-               unconfined_dbus_connect(mono_t)
-       ')
+optional_policy(`
+       xserver_rw_shm(mono_t)
 ')