2008-12-10 19:38:10 +00:00
|
|
|
policy_module(usbmodules, 1.2.0)
|
2006-01-11 18:28:57 +00:00
|
|
|
|
|
|
|
########################################
|
|
|
|
#
|
|
|
|
# Declarations
|
|
|
|
#
|
|
|
|
|
|
|
|
type usbmodules_t;
|
|
|
|
type usbmodules_exec_t;
|
2008-07-23 21:38:39 +00:00
|
|
|
init_system_domain(usbmodules_t, usbmodules_exec_t)
|
2006-01-11 18:28:57 +00:00
|
|
|
role system_r types usbmodules_t;
|
|
|
|
|
|
|
|
########################################
|
|
|
|
#
|
|
|
|
# Local policy
|
|
|
|
#
|
|
|
|
|
|
|
|
kernel_list_proc(usbmodules_t)
|
|
|
|
|
2006-03-02 23:41:11 +00:00
|
|
|
files_list_kernel_modules(usbmodules_t)
|
2006-01-11 18:28:57 +00:00
|
|
|
|
|
|
|
dev_list_usbfs(usbmodules_t)
|
|
|
|
# allow usb device access
|
|
|
|
dev_rw_usbfs(usbmodules_t)
|
|
|
|
|
|
|
|
files_list_etc(usbmodules_t)
|
|
|
|
# needs etc_t read access for the hotplug config, maybe should have a new type
|
|
|
|
files_read_etc_files(usbmodules_t)
|
|
|
|
|
|
|
|
term_read_console(usbmodules_t)
|
|
|
|
term_write_console(usbmodules_t)
|
|
|
|
|
2006-03-02 23:41:11 +00:00
|
|
|
init_use_fds(usbmodules_t)
|
2006-01-11 18:28:57 +00:00
|
|
|
|
2006-09-05 14:31:27 +00:00
|
|
|
miscfiles_read_hwdata(usbmodules_t)
|
|
|
|
|
2006-02-02 21:08:12 +00:00
|
|
|
modutils_read_module_deps(usbmodules_t)
|
2006-01-11 18:28:57 +00:00
|
|
|
|
2008-11-05 16:10:46 +00:00
|
|
|
userdom_use_user_terminals(usbmodules_t)
|
|
|
|
|
2006-03-24 16:13:54 +00:00
|
|
|
optional_policy(`
|
2006-01-11 18:28:57 +00:00
|
|
|
hotplug_read_config(usbmodules_t)
|
|
|
|
')
|
|
|
|
|
2006-03-24 16:13:54 +00:00
|
|
|
optional_policy(`
|
2006-01-11 18:28:57 +00:00
|
|
|
logging_send_syslog_msg(usbmodules_t)
|
|
|
|
')
|