|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
f1be09 |
policy_module(terminal,1.3.1)
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
########################################
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
# Declarations
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
attribute ttynode;
|
|
Chris PeBenito |
17de1b |
attribute ptynode;
|
|
Chris PeBenito |
17de1b |
attribute server_ptynode;
|
|
Chris PeBenito |
17de1b |
attribute serial_device;
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
# bsdpty_device_t is the type of /dev/[tp]ty[abcdepqrstuvwxyz][0-9a-f]
|
|
Chris PeBenito |
17de1b |
type bsdpty_device_t;
|
|
Chris PeBenito |
17de1b |
dev_node(bsdpty_device_t)
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
# console_device_t is the type of /dev/console.
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
type console_device_t;
|
|
Chris PeBenito |
17de1b |
dev_node(console_device_t)
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
# devpts_t is the type of the devpts file system and
|
|
Chris PeBenito |
17de1b |
# the type of the root directory of the file system.
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
type devpts_t;
|
|
Chris PeBenito |
17de1b |
files_mountpoint(devpts_t)
|
|
Chris PeBenito |
17de1b |
fs_associate_tmpfs(devpts_t)
|
|
Chris PeBenito |
17de1b |
fs_type(devpts_t)
|
|
Chris PeBenito |
17de1b |
fs_use_trans devpts gen_context(system_u:object_r:devpts_t,s0);
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
ifdef(`targeted_policy',`
|
|
Chris PeBenito |
17de1b |
# cjp: the ttynode should probably be removed.
|
|
Chris PeBenito |
17de1b |
typeattribute devpts_t ttynode, ptynode;
|
|
Chris PeBenito |
17de1b |
')
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
# devtty_t is the type of /dev/tty.
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
type devtty_t;
|
|
Chris PeBenito |
17de1b |
dev_node(devtty_t)
|
|
Chris PeBenito |
17de1b |
mls_trusted_object(devtty_t)
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
# ptmx_t is the type for /dev/ptmx.
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
type ptmx_t;
|
|
Chris PeBenito |
17de1b |
dev_node(ptmx_t)
|
|
Chris PeBenito |
17de1b |
mls_trusted_object(ptmx_t)
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
# tty_device_t is the type of /dev/*tty*
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
type tty_device_t, serial_device;
|
|
Chris PeBenito |
17de1b |
dev_node(tty_device_t)
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
ifdef(`targeted_policy',`
|
|
Chris PeBenito |
17de1b |
typeattribute tty_device_t ttynode;
|
|
Chris PeBenito |
17de1b |
')
|
|
Chris PeBenito |
17de1b |
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
# usbtty_device_t is the type of /dev/usr/tty*
|
|
Chris PeBenito |
17de1b |
#
|
|
Chris PeBenito |
17de1b |
type usbtty_device_t, serial_device;
|
|
Chris PeBenito |
17de1b |
dev_node(usbtty_device_t)
|