selinux-policy/refpolicy/policy/support/loadable_module.spt

########################################
#
# Macros for switching between source policy
# and loadable policy module support
#

##############################
#
# For adding the module statement
#
define(`policy_module',`
	ifdef(`monolithic_policy',`',`
		module $1 $2;
	')
')

##############################
#
# For use in interfaces, to optionally insert a requires block
#
define(`requires_block_template',`
	ifdef(`monolithic_policy',`',`
		require {
			$1
		}
	')
')

##############################
#
# In the future interfaces could be in loadable modules
#
# module_interface(name,rules)
#
define(`module_interface',`
	define(`$1',`
		requires_block_template(`$1'_depend)
		$2
	')
')

##############################
#
# Optional policy handling
#
define(`optional_policy',`
	ifdef(`monolithic_policy',`
		ifdef(`$1',$2,$3)
	',`
		optional {
			$2
		} else {
			$3
		}
	')
')

##############################
#
# Determine if we should use the default
# tunable value as specified by the policy
# or if the override value should be used
#
define(`deflt_or_overr',`ifdef(`$1',$1,$2)')

##############################
#
# Tunable declaration
#
define(`tunable_def',`
	ifdef(`monolithic_policy',`
		bool $1 deflt_or_overr(`$1'_conf,$2);
	',`
		# loadable module tunable
		# declaration will go here
		# for $1 $2
	')
')

##############################
#
# Tunable policy handling
#
define(`tunable_policy',`
	ifdef(`monolithic_policy',`
		if (`$1') {
			$2
		} else {
			$3
		}
	',`
		optional {
			require { `$1' }
			$2
		} else {
			$3
		}
	')
')
start breaking up support_macros into macros dir 2005-06-02 14:31:31 +00:00			`########################################`
			`#`
			`# Macros for switching between source policy`
			`# and loadable policy module support`
			`#`

			`##############################`
			`#`
			`# For adding the module statement`
			`#`
			define(`policy_module',`
start switching over to new tunable infrastructure 2005-06-07 18:45:47 +00:00			ifdef(`monolithic_policy',`',`
			`module $1 $2;`
			`')`
start breaking up support_macros into macros dir 2005-06-02 14:31:31 +00:00			`')`

			`##############################`
			`#`
			`# For use in interfaces, to optionally insert a requires block`
			`#`
			define(`requires_block_template',`
start switching over to new tunable infrastructure 2005-06-07 18:45:47 +00:00			ifdef(`monolithic_policy',`',`
			`require {`
			`$1`
			`}`
			`')`
			`')`
start breaking up support_macros into macros dir 2005-06-02 14:31:31 +00:00
add interface macro 2005-06-08 13:11:47 +00:00			`##############################`
			`#`
			`# In the future interfaces could be in loadable modules`
			`#`
			`# module_interface(name,rules)`
			`#`
			define(`module_interface',`
			define(`$1',`
			requires_block_template(`$1'_depend)
			`$2`
			`')`
			`')`

start breaking up support_macros into macros dir 2005-06-02 14:31:31 +00:00			`##############################`
			`#`
			`# Optional policy handling`
			`#`
			define(`optional_policy',`
start switching over to new tunable infrastructure 2005-06-07 18:45:47 +00:00			ifdef(`monolithic_policy',`
			ifdef(`$1',$2,$3)
			',`
			`optional {`
			`$2`
			`} else {`
			`$3`
			`}`
			`')`
			`')`
start breaking up support_macros into macros dir 2005-06-02 14:31:31 +00:00
more tunable work 2005-06-07 22:26:39 +00:00			`##############################`
			`#`
			`# Determine if we should use the default`
			`# tunable value as specified by the policy`
			`# or if the override value should be used`
			`#`
			define(`deflt_or_overr',`ifdef(`$1',$1,$2)')

			`##############################`
			`#`
			`# Tunable declaration`
			`#`
			define(`tunable_def',`
			ifdef(`monolithic_policy',`
			bool $1 deflt_or_overr(`$1'_conf,$2);
			',`
			`# loadable module tunable`
			`# declaration will go here`
			`# for $1 $2`
			`')`
			`')`

start breaking up support_macros into macros dir 2005-06-02 14:31:31 +00:00			`##############################`
			`#`
			`# Tunable policy handling`
			`#`
			define(`tunable_policy',`
start switching over to new tunable infrastructure 2005-06-07 18:45:47 +00:00			ifdef(`monolithic_policy',`
			if (`$1') {
			`$2`
			`} else {`
			`$3`
			`}`
			',`
			`optional {`
			require { `$1' }
			`$2`
			`} else {`
			`$3`
			`}`
			`')`
			`')`