On Tue, Apr 15, 2008 at 03:26:02PM +0200, Václav Ovsík wrote: ... > Another patch is attached with the specific type for home file > (<ROLE>_gpg_agent_home_t). I hope, this is better than general write ... I forgot file context... The attached patch adds one for fixed filename `.gpg-agent-info'. Best Regards -- Zito
Index: policy/modules/apps/gpg.fc =================================================================== --- policy/modules/apps/gpg.fc.orig 2008-04-24 09:03:05.000000000 +0200 +++ policy/modules/apps/gpg.fc 2008-04-24 09:05:22.000000000 +0200 @@ -1,4 +1,5 @@ HOME_DIR/\.gnupg(/.+)? gen_context(system_u:object_r:ROLE_gpg_secret_t,s0) +HOME_DIR/\.gpg-agent-info gen_context(system_u:object_r:ROLE_gpg_agent_home_t,s0) /usr/bin/gpg(2)? -- gen_context(system_u:object_r:gpg_exec_t,s0) /usr/bin/gpg-agent -- gen_context(system_u:object_r:gpg_agent_exec_t,s0)
