|
Chris PeBenito |
ab58ad |
#DESC Anaconda - Red Hat Installation program
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
# Authors: Dan Walsh <dwalsh@redhat.com>
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
#################################
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
# Rules for the anaconda_t domain.
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
# anaconda_t is the domain of the installation program
|
|
Chris PeBenito |
ab58ad |
#
|
|
Chris PeBenito |
ab58ad |
type anaconda_t, admin, etc_writer, fs_domain, privmem, auth_write, domain, privlog, privowner, privmodule, sysctl_kernel_writer;
|
|
Chris PeBenito |
ab58ad |
role system_r types anaconda_t;
|
|
Chris PeBenito |
ab58ad |
unconfined_domain(anaconda_t)
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
role system_r types ldconfig_t;
|
|
Chris PeBenito |
ab58ad |
domain_auto_trans(anaconda_t, ldconfig_exec_t, ldconfig_t)
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
# Run other rc scripts in the anaconda_t domain.
|
|
Chris PeBenito |
ab58ad |
domain_auto_trans(anaconda_t, initrc_exec_t, initrc_t)
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
ifdef(`dmesg.te', `
|
|
Chris PeBenito |
ab58ad |
domain_auto_trans(anaconda_t, dmesg_exec_t, dmesg_t)
|
|
Chris PeBenito |
ab58ad |
')
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
ifdef(`distro_redhat', `
|
|
Chris PeBenito |
ab58ad |
file_type_auto_trans(anaconda_t, boot_t, boot_runtime_t, file)
|
|
Chris PeBenito |
ab58ad |
')
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
ifdef(`rpm.te', `
|
|
Chris PeBenito |
ab58ad |
# Access /var/lib/rpm.
|
|
Chris PeBenito |
ab58ad |
domain_auto_trans(anaconda_t, rpm_exec_t, rpm_t)
|
|
Chris PeBenito |
ab58ad |
')
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
file_type_auto_trans(anaconda_t, var_log_t, var_log_ksyms_t, file)
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
ifdef(`udev.te', `
|
|
Chris PeBenito |
ab58ad |
domain_auto_trans(anaconda_t, udev_exec_t, udev_t)
|
|
Chris PeBenito |
ab58ad |
')
|
|
Chris PeBenito |
ab58ad |
|
|
Chris PeBenito |
ab58ad |
ifdef(`ssh-agent.te', `
|
|
Chris PeBenito |
ab58ad |
role system_r types sysadm_ssh_agent_t;
|
|
Chris PeBenito |
ab58ad |
domain_auto_trans(anaconda_t, ssh_agent_exec_t, sysadm_ssh_agent_t)
|
|
Chris PeBenito |
ab58ad |
')
|
|
Chris PeBenito |
ab58ad |
ifdef(`passwd.te', `
|
|
Chris PeBenito |
ab58ad |
domain_auto_trans(anaconda_t , admin_passwd_exec_t, sysadm_passwd_t)
|
|
Chris PeBenito |
ab58ad |
')
|