# Policy file to allow kbluepin to function correcly.
# Addition to fedora selinux-policy-targeted-2.2.29-3.fc5
# Author Charles-Edouard Ruault <ce at ruault.com> 04-26-2006
module kbluepin 1.3;

require {
	class dir { getattr read search }; 
	class lnk_file { getattr read }; 
	class capability { dac_override dac_read_search };
	class sock_file { read write };

	type bluetooth_helper_t; 
	type ice_tmp_t; 
	type public_content_t; 
	type sbin_t; 
	type user_home_t; 
	type var_lib_t; 
	type var_t; 
	type var_spool_t; 
	type xserver_log_t; 
};

allow bluetooth_helper_t self:capability { dac_override dac_read_search };
allow bluetooth_helper_t ice_tmp_t:dir search;
allow bluetooth_helper_t public_content_t:dir getattr;
allow bluetooth_helper_t public_content_t:dir read;
allow bluetooth_helper_t sbin_t:dir getattr;
allow bluetooth_helper_t sbin_t:dir read;
allow bluetooth_helper_t user_home_t:lnk_file { getattr read };
allow bluetooth_helper_t var_lib_t:dir search;
allow bluetooth_helper_t var_lib_t:dir read;
allow bluetooth_helper_t var_t:dir search;
allow bluetooth_helper_t var_t:dir read;
allow bluetooth_helper_t xserver_log_t:dir getattr;
allow bluetooth_helper_t xserver_log_t:dir read;
allow bluetooth_helper_t ice_tmp_t:sock_file write;