Update cod4, q3a, quake2, tesseract, tf2, ts3 and ut2004 to new interfaces

[selinux.git] / q3a / q3a.te

diff --git a/q3a/q3a.te b/q3a/q3a.te
index 371ef6b..ef9da68 100644 (file)
--- a/q3a/q3a.te
+++ b/q3a/q3a.te
@@ -1,4 +1,4 @@
-policy_module(q3a, 0.1.19)
+policy_module(q3a, 0.1.23)
 
 # File context for the executable process
 type q3a_t;
@@ -10,8 +10,7 @@ files_type(q3a_rw_t)
 type q3a_ro_t;
 files_type(q3a_ro_t)
 
-type q3a_tmp_t;
-files_tmp_file(q3a_tmp_t)
+_sky_files_use_tmp(q3a_t, q3a_tmp_t)
 
 init_daemon_domain(q3a_t, q3a_exec_t)
 
@@ -19,17 +18,16 @@ corenet_udp_sendrecv_generic_port(q3a_t)
 corenet_udp_bind_generic_port(q3a_t)
 corenet_udp_bind_generic_node(q3a_t)
 
+read_files_pattern(q3a_t, q3a_ro_t, q3a_ro_t)
+
 allow q3a_t q3a_ro_t:dir list_dir_perms;
 allow q3a_t q3a_ro_t:file read_file_perms;
-allow q3a_t q3a_tmp_t:file manage_file_perms;
-allow q3a_t q3a_tmp_t:dir manage_dir_perms;
 
 manage_files_pattern(q3a_t, q3a_rw_t, q3a_rw_t)
 manage_dirs_pattern(q3a_t, q3a_rw_t, q3a_rw_t)
 setattr_files_pattern(q3a_t, q3a_rw_t, q3a_rw_t)
 
 sysnet_dns_name_resolve(q3a_t)
-files_tmp_filetrans(q3a_t, q3a_tmp_t, { file dir})
 
 dev_read_urand(q3a_t)