Chris PeBenito fdae8e
## <summary>Hardware abstraction layer</summary>
Chris PeBenito 4614e8
Chris PeBenito 4614e8
########################################
Chris PeBenito 4614e8
## <summary>
Chris PeBenito 4614e8
##	Execute hal in the hal domain.
Chris PeBenito 4614e8
## </summary>
Chris PeBenito 4614e8
## <param name="domain">
Chris PeBenito 885b83
##	<summary>
Chris PeBenito 4614e8
##	Domain allowed access.
Chris PeBenito 885b83
##	</summary>
Chris PeBenito 4614e8
## </param>
Chris PeBenito 4614e8
#
Chris PeBenito 4614e8
interface(`hal_domtrans',`
Chris PeBenito 4614e8
	gen_require(`
Chris PeBenito 4614e8
		type hald_t, hald_exec_t;
Chris PeBenito 4614e8
	')
Chris PeBenito 4614e8
Chris PeBenito 4614e8
	domain_auto_trans($1,hald_exec_t,hald_t)
Chris PeBenito 4614e8
Chris PeBenito 4614e8
	allow $1 hald_t:fd use;
Chris PeBenito 4614e8
	allow hald_t $1:fd use;
Chris PeBenito 4614e8
	allow hald_t $1:fifo_file rw_file_perms;
Chris PeBenito 4614e8
	allow hald_t $1:process sigchld;
Chris PeBenito 4614e8
')
Chris PeBenito 725926
Chris PeBenito 725926
########################################
Chris PeBenito 725926
## <summary>
Chris PeBenito 725926
##	Send to hal over a unix domain
Chris PeBenito 725926
##	datagram socket.
Chris PeBenito 725926
## </summary>
Chris PeBenito 725926
## <param name="domain">
Chris PeBenito 885b83
##	<summary>
Chris PeBenito 725926
##	Domain allowed access.
Chris PeBenito 885b83
##	</summary>
Chris PeBenito 725926
## </param>
Chris PeBenito 725926
#
Chris PeBenito 1c1ac6
interface(`hal_dgram_send',`
Chris PeBenito 725926
	gen_require(`
Chris PeBenito 725926
		type hald_t;
Chris PeBenito 725926
	')
Chris PeBenito 725926
Chris PeBenito 725926
	allow $1 hald_t:unix_dgram_socket sendto;
Chris PeBenito 725926
')
Chris PeBenito 704327
Chris PeBenito 704327
########################################
Chris PeBenito 704327
## <summary>
Chris PeBenito 704327
##	Send to hal over a unix domain
Chris PeBenito 704327
##	stream socket.
Chris PeBenito 704327
## </summary>
Chris PeBenito 704327
## <param name="domain">
Chris PeBenito 885b83
##	<summary>
Chris PeBenito 704327
##	Domain allowed access.
Chris PeBenito 885b83
##	</summary>
Chris PeBenito 704327
## </param>
Chris PeBenito 704327
#
Chris PeBenito 704327
interface(`hal_stream_connect',`
Chris PeBenito 704327
	gen_require(`
Chris PeBenito 704327
		type hald_t;
Chris PeBenito 704327
	')
Chris PeBenito 704327
Chris PeBenito 704327
	allow $1 hald_t:unix_stream_socket connectto;
Chris PeBenito 704327
')
Chris PeBenito af2345
Chris PeBenito af2345
########################################
Chris PeBenito af2345
## <summary>
Chris PeBenito af2345
##	Send a dbus message to hal.
Chris PeBenito af2345
## </summary>
Chris PeBenito af2345
## <param name="domain">
Chris PeBenito 885b83
##	<summary>
Chris PeBenito af2345
##	Domain allowed access.
Chris PeBenito 885b83
##	</summary>
Chris PeBenito af2345
## </param>
Chris PeBenito af2345
#
Chris PeBenito af2345
interface(`hal_dbus_send',`
Chris PeBenito af2345
	gen_require(`
Chris PeBenito af2345
		type hald_t;
Chris PeBenito af2345
		class dbus send_msg;
Chris PeBenito af2345
	')
Chris PeBenito af2345
Chris PeBenito af2345
	allow $1 hald_t:dbus send_msg;
Chris PeBenito af2345
')
Chris PeBenito ac9aa2
Chris PeBenito ac9aa2
########################################
Chris PeBenito ac9aa2
## <summary>
Chris PeBenito ac9aa2
##	Send and receive messages from
Chris PeBenito ac9aa2
##	hal over dbus.
Chris PeBenito ac9aa2
## </summary>
Chris PeBenito ac9aa2
## <param name="domain">
Chris PeBenito 885b83
##	<summary>
Chris PeBenito ac9aa2
##	Domain allowed access.
Chris PeBenito 885b83
##	</summary>
Chris PeBenito ac9aa2
## </param>
Chris PeBenito ac9aa2
#
Chris PeBenito ac9aa2
interface(`hal_dbus_chat',`
Chris PeBenito ac9aa2
	gen_require(`
Chris PeBenito ac9aa2
		type hald_t;
Chris PeBenito ac9aa2
		class dbus send_msg;
Chris PeBenito ac9aa2
	')
Chris PeBenito ac9aa2
Chris PeBenito ac9aa2
	allow $1 hald_t:dbus send_msg;
Chris PeBenito ac9aa2
	allow hald_t $1:dbus send_msg;
Chris PeBenito ac9aa2
')
Chris PeBenito a3cf80
Chris PeBenito 123a99
########################################
Chris PeBenito 123a99
## <summary>
Chris PeBenito 123a99
##	Read hald tmp files.
Chris PeBenito 123a99
## </summary>
Chris PeBenito 123a99
## <param name="domain">
Chris PeBenito 123a99
##	<summary>
Chris PeBenito 123a99
##	Domain allowed access.
Chris PeBenito 123a99
##	</summary>
Chris PeBenito 123a99
## </param>
Chris PeBenito 123a99
#
Chris PeBenito 123a99
interface(`hal_read_tmp_files',`
Chris PeBenito 123a99
	gen_require(`
Chris PeBenito 123a99
		type hald_tmp_t;
Chris PeBenito 123a99
	')
Chris PeBenito 123a99
Chris PeBenito 123a99
	allow $1 hald_tmp_t:file r_file_perms;
Chris PeBenito 123a99
')
Chris PeBenito a3cf80
Chris PeBenito a3cf80
########################################
Chris PeBenito a3cf80
## <summary>
Chris PeBenito 123a99
##	Read hald PID files.
Chris PeBenito a3cf80
## </summary>
Chris PeBenito a3cf80
## <param name="domain">
Chris PeBenito a3cf80
##	<summary>
Chris PeBenito a3cf80
##	Domain allowed access.
Chris PeBenito a3cf80
##	</summary>
Chris PeBenito a3cf80
## </param>
Chris PeBenito a3cf80
#
Chris PeBenito a3cf80
interface(`hal_read_pid_files',`
Chris PeBenito a3cf80
	gen_require(`
Chris PeBenito a3cf80
		type hald_var_run_t;
Chris PeBenito a3cf80
	')
Chris PeBenito a3cf80
Chris PeBenito a3cf80
	files_search_pids($1)
Chris PeBenito a3cf80
	allow $1 hald_var_run_t:file r_file_perms;
Chris PeBenito a3cf80
')
Chris PeBenito a3cf80
Chris PeBenito a3cf80
Chris PeBenito a3cf80
########################################
Chris PeBenito a3cf80
## <summary>
Chris PeBenito 123a99
##	Read/Write hald PID files.
Chris PeBenito a3cf80
## </summary>
Chris PeBenito a3cf80
## <param name="domain">
Chris PeBenito a3cf80
##	<summary>
Chris PeBenito a3cf80
##	Domain allowed access.
Chris PeBenito a3cf80
##	</summary>
Chris PeBenito a3cf80
## </param>
Chris PeBenito a3cf80
#
Chris PeBenito a3cf80
interface(`hal_rw_pid_files',`
Chris PeBenito a3cf80
	gen_require(`
Chris PeBenito a3cf80
		type hald_var_run_t;
Chris PeBenito a3cf80
	')
Chris PeBenito a3cf80
Chris PeBenito a3cf80
	files_search_pids($1)
Chris PeBenito a3cf80
	allow $1 hald_var_run_t:file rw_file_perms;
Chris PeBenito a3cf80
')