|
Chris PeBenito |
e181fe |
# Copyright (C) 2005 Tresys Technology, LLC
|
|
Chris PeBenito |
e181fe |
|
|
Chris PeBenito |
015435 |
#######################################
|
|
Chris PeBenito |
015435 |
#
|
|
Chris PeBenito |
bd202f |
# getty_transition(domain)
|
|
Chris PeBenito |
015435 |
#
|
|
Chris PeBenito |
015435 |
define(`getty_transition',`
|
|
Chris PeBenito |
bd202f |
requires_block_template(`$0'_depend)
|
|
Chris PeBenito |
015435 |
allow $1 getty_exec_t:file { getattr read execute };
|
|
Chris PeBenito |
015435 |
allow $1 getty_t:process transition;
|
|
Chris PeBenito |
e7fcdc |
type_transition $1 getty_exec_t:process getty_t;
|
|
Chris PeBenito |
015435 |
dontaudit $1 getty_t:process { noatsecure siginh rlimitinh };
|
|
Chris PeBenito |
4bf4ed |
allow $1 getty_t:fd use;
|
|
Chris PeBenito |
4bf4ed |
allow getty_t $1:fd use;
|
|
Chris PeBenito |
4bf4ed |
allow getty_t $1:fifo_file rw_file_perms;
|
|
Chris PeBenito |
4bf4ed |
allow getty_t $1:process sigchld;
|
|
Chris PeBenito |
015435 |
')
|
|
Chris PeBenito |
015435 |
|
|
Chris PeBenito |
015435 |
define(`getty_transition_depend',`
|
|
Chris PeBenito |
015435 |
type getty_t, getty_exec_t;
|
|
Chris PeBenito |
015435 |
class file { getattr read execute };
|
|
Chris PeBenito |
4bf4ed |
class process { transition noatsecure siginh rlimitinh sigchld };
|
|
Chris PeBenito |
4bf4ed |
class fd use;
|
|
Chris PeBenito |
4bf4ed |
class fifo_file rw_file_perms;
|
|
Chris PeBenito |
015435 |
')
|
|
Chris PeBenito |
015435 |
|
|
Chris PeBenito |
015435 |
#######################################
|
|
Chris PeBenito |
015435 |
#
|
|
Chris PeBenito |
bd202f |
# getty_read_log_file(domain)
|
|
Chris PeBenito |
015435 |
#
|
|
Chris PeBenito |
015435 |
define(`getty_read_log_file',`
|
|
Chris PeBenito |
bd202f |
requires_block_template(`$0'_depend)
|
|
Chris PeBenito |
015435 |
allow $1 getty_log_t:file { getattr read };
|
|
Chris PeBenito |
015435 |
')
|
|
Chris PeBenito |
015435 |
|
|
Chris PeBenito |
015435 |
define(`getty_read_log_file_depend',`
|
|
Chris PeBenito |
015435 |
type getty_log_t;
|
|
Chris PeBenito |
015435 |
class file { getattr read };
|
|
Chris PeBenito |
015435 |
')
|
|
Chris PeBenito |
015435 |
|
|
Chris PeBenito |
015435 |
#######################################
|
|
Chris PeBenito |
015435 |
#
|
|
Chris PeBenito |
bd202f |
# getty_read_config_file(domain)
|
|
Chris PeBenito |
015435 |
#
|
|
Chris PeBenito |
015435 |
define(`getty_read_config_file',`
|
|
Chris PeBenito |
bd202f |
requires_block_template(`$0'_depend)
|
|
Chris PeBenito |
015435 |
allow $1 getty_etc_t:file { getattr read };
|
|
Chris PeBenito |
015435 |
')
|
|
Chris PeBenito |
015435 |
|
|
Chris PeBenito |
015435 |
define(`getty_read_config_file_depend',`
|
|
Chris PeBenito |
015435 |
type getty_etc_t;
|
|
Chris PeBenito |
015435 |
class file { getattr read };
|
|
Chris PeBenito |
015435 |
')
|
|
Chris PeBenito |
015435 |
|
|
Chris PeBenito |
015435 |
#######################################
|
|
Chris PeBenito |
015435 |
#
|
|
Chris PeBenito |
bd202f |
# getty_modify_config_file(domain)
|
|
Chris PeBenito |
015435 |
#
|
|
Chris PeBenito |
015435 |
define(`getty_modify_config_file',`
|
|
Chris PeBenito |
bd202f |
requires_block_template(`$0'_depend)
|
|
Chris PeBenito |
015435 |
allow $1 getty_etc_t:file { getattr read write };
|
|
Chris PeBenito |
015435 |
')
|
|
Chris PeBenito |
015435 |
|
|
Chris PeBenito |
015435 |
define(`getty_modify_config_file_depend',`
|
|
Chris PeBenito |
015435 |
type getty_etc_t;
|
|
Chris PeBenito |
015435 |
class file { getattr read write };
|
|
Chris PeBenito |
015435 |
')
|