Blame refpolicy/policy/modules/admin/usbmodules.te
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
policy_module(usbmodules,1.0.0)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
########################################
|
|
Chris PeBenito |
44f490 |
#
|
|
Chris PeBenito |
44f490 |
# Declarations
|
|
Chris PeBenito |
44f490 |
#
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
type usbmodules_t;
|
|
Chris PeBenito |
44f490 |
type usbmodules_exec_t;
|
|
Chris PeBenito |
44f490 |
init_system_domain(usbmodules_t,usbmodules_exec_t)
|
|
Chris PeBenito |
44f490 |
role system_r types usbmodules_t;
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
########################################
|
|
Chris PeBenito |
44f490 |
#
|
|
Chris PeBenito |
44f490 |
# Local policy
|
|
Chris PeBenito |
44f490 |
#
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
kernel_list_proc(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
1c1ac6 |
files_list_kernel_modules(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
dev_list_usbfs(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
# allow usb device access
|
|
Chris PeBenito |
44f490 |
dev_rw_usbfs(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
files_list_etc(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
# needs etc_t read access for the hotplug config, maybe should have a new type
|
|
Chris PeBenito |
44f490 |
files_read_etc_files(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
term_read_console(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
term_write_console(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
1c1ac6 |
init_use_fds(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
44f490 |
libs_use_ld_so(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
libs_use_shared_libs(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
1815ba |
modutils_read_module_deps(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
bb7170 |
optional_policy(`
|
|
Chris PeBenito |
44f490 |
hotplug_read_config(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
')
|
|
Chris PeBenito |
44f490 |
|
|
Chris PeBenito |
bb7170 |
optional_policy(`
|
|
Chris PeBenito |
44f490 |
logging_send_syslog_msg(usbmodules_t)
|
|
Chris PeBenito |
44f490 |
')
|