Blame refpolicy/policy/modules/services/gpm.if
|
Chris PeBenito |
f862c3 |
## <summary>General Purpose Mouse driver</summary>
|
|
Chris PeBenito |
f862c3 |
|
|
Chris PeBenito |
f862c3 |
########################################
|
|
Chris PeBenito |
f862c3 |
## <summary>
|
|
Chris PeBenito |
f862c3 |
## Get the attributes of the GPM
|
|
Chris PeBenito |
f862c3 |
## control channel named socket.
|
|
Chris PeBenito |
f862c3 |
## </summary>
|
|
Chris PeBenito |
f862c3 |
## <param name="domain">
|
|
Chris PeBenito |
f862c3 |
## Domain allowed access.
|
|
Chris PeBenito |
f862c3 |
## </param>
|
|
Chris PeBenito |
f862c3 |
#
|
|
Chris PeBenito |
f862c3 |
interface(`gpm_getattr_gpmctl',`
|
|
Chris PeBenito |
f862c3 |
gen_require(`
|
|
Chris PeBenito |
f862c3 |
type gpmctl_t;
|
|
Chris PeBenito |
f862c3 |
class sock_file getattr;
|
|
Chris PeBenito |
f862c3 |
')
|
|
Chris PeBenito |
f862c3 |
|
|
Chris PeBenito |
f862c3 |
dev_list_all_dev_nodes($1)
|
|
Chris PeBenito |
f862c3 |
allow $1 gpmctl_t:sock_file getattr;
|
|
Chris PeBenito |
f862c3 |
')
|
|
Chris PeBenito |
f862c3 |
|
|
Chris PeBenito |
f862c3 |
########################################
|
|
Chris PeBenito |
f862c3 |
## <summary>
|
|
Chris PeBenito |
f862c3 |
## Do not audit attempts to get the
|
|
Chris PeBenito |
f862c3 |
## attributes of the GPM control channel
|
|
Chris PeBenito |
f862c3 |
## named socket.
|
|
Chris PeBenito |
f862c3 |
## </summary>
|
|
Chris PeBenito |
f862c3 |
## <param name="domain">
|
|
Chris PeBenito |
f862c3 |
## Domain allowed access.
|
|
Chris PeBenito |
f862c3 |
## </param>
|
|
Chris PeBenito |
f862c3 |
#
|
|
Chris PeBenito |
f862c3 |
interface(`gpm_dontaudit_getattr_gpmctl',`
|
|
Chris PeBenito |
f862c3 |
gen_require(`
|
|
Chris PeBenito |
f862c3 |
type gpmctl_t;
|
|
Chris PeBenito |
f862c3 |
class sock_file getattr;
|
|
Chris PeBenito |
f862c3 |
')
|
|
Chris PeBenito |
f862c3 |
|
|
Chris PeBenito |
f862c3 |
dev_list_all_dev_nodes($1)
|
|
Chris PeBenito |
f862c3 |
allow $1 gpmctl_t:sock_file getattr;
|
|
Chris PeBenito |
f862c3 |
')
|
|
Chris PeBenito |
f862c3 |
|
|
Chris PeBenito |
f862c3 |
########################################
|
|
Chris PeBenito |
f862c3 |
## <summary>
|
|
Chris PeBenito |
f862c3 |
## Set the attributes of the GPM
|
|
Chris PeBenito |
f862c3 |
## control channel named socket.
|
|
Chris PeBenito |
f862c3 |
## </summary>
|
|
Chris PeBenito |
f862c3 |
## <param name="domain">
|
|
Chris PeBenito |
f862c3 |
## Domain allowed access.
|
|
Chris PeBenito |
f862c3 |
## </param>
|
|
Chris PeBenito |
f862c3 |
#
|
|
Chris PeBenito |
f862c3 |
interface(`gpm_setattr_gpmctl',`
|
|
Chris PeBenito |
f862c3 |
gen_require(`
|
|
Chris PeBenito |
f862c3 |
type gpmctl_t;
|
|
Chris PeBenito |
f862c3 |
class sock_file setattr;
|
|
Chris PeBenito |
f862c3 |
')
|
|
Chris PeBenito |
f862c3 |
|
|
Chris PeBenito |
f862c3 |
dev_list_all_dev_nodes($1)
|
|
Chris PeBenito |
f862c3 |
allow $1 gpmctl_t:sock_file setattr;
|
|
Chris PeBenito |
f862c3 |
')
|