selinux-policy/policy/modules/roles/auditadm.if

51 lines
917 B
Plaintext
Raw Normal View History

## <summary>Audit administrator role</summary>
########################################
## <summary>
2008-11-05 16:10:46 +00:00
## Change to the audit administrator role.
## </summary>
2008-11-05 16:10:46 +00:00
## <param name="role">
## <summary>
2008-11-05 16:10:46 +00:00
## Role allowed access.
## </summary>
## </param>
## <rolecap/>
#
2008-11-05 16:10:46 +00:00
interface(`auditadm_role_change',`
gen_require(`
role auditadm_r;
')
allow $1 auditadm_r;
')
########################################
## <summary>
2008-11-05 16:10:46 +00:00
## Change from the audit administrator role.
## </summary>
## <desc>
## <p>
2008-11-05 16:10:46 +00:00
## Change from the audit administrator role to
## the specified role.
## </p>
## <p>
2008-11-05 16:10:46 +00:00
## This is an interface to support third party modules
## and its use is not allowed in upstream reference
## policy.
## </p>
## </desc>
2008-11-05 16:10:46 +00:00
## <param name="role">
## <summary>
2008-11-05 16:10:46 +00:00
## Role allowed access.
## </summary>
## </param>
## <rolecap/>
#
2008-11-05 16:10:46 +00:00
interface(`auditadm_role_change_to',`
gen_require(`
role auditadm_r;
')
2008-11-05 16:10:46 +00:00
allow auditadm_r $1;
')