Run interface for ptchown from Dan Walsh

This commit is contained in:
Jeremy Solt 2010-03-16 08:37:41 -04:00 committed by Chris PeBenito
parent 37e2499ed1
commit 31371480b0
2 changed files with 25 additions and 0 deletions

View File

@ -18,3 +18,27 @@ interface(`ptchown_domtrans',`
domtrans_pattern($1, ptchown_exec_t, ptchown_t) domtrans_pattern($1, ptchown_exec_t, ptchown_t)
') ')
########################################
## <summary>
## Execute ptchown in the ptchown domain, and
## allow the specified role the ptchown domain.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
## <param name="role">
## <summary>
## The role to be allowed the ptchown domain.
## </summary>
## </param>
#
interface(`ptchown_run',`
gen_require(`
type ptchown_t;
')
ptchown_domtrans($1)
role $2 types ptchown_t;
')

View File

@ -24,6 +24,7 @@ files_read_etc_files(ptchown_t)
fs_rw_anon_inodefs_files(ptchown_t) fs_rw_anon_inodefs_files(ptchown_t)
term_setattr_generic_ptys(ptchown_t) term_setattr_generic_ptys(ptchown_t)
term_getattr_all_ptys(ptchown_t)
term_setattr_all_ptys(ptchown_t) term_setattr_all_ptys(ptchown_t)
term_use_generic_ptys(ptchown_t) term_use_generic_ptys(ptchown_t)
term_use_ptmx(ptchown_t) term_use_ptmx(ptchown_t)