finish lock_domain, fix file_type_auto_trans
This commit is contained in:
parent
d18e3d73bb
commit
70abf87502
@ -793,14 +793,6 @@ allow $1 $2:fifo_file { create ioctl read getattr lock write setattr append link
|
||||
type_transition $1 $2:dir $3;
|
||||
type_transition $1 $2:{ file lnk_file sock_file fifo_file } $3;
|
||||
|
||||
#
|
||||
# file_type_auto_trans($1,$2,$3,$4):
|
||||
#
|
||||
# for each i in $4
|
||||
allow $1 $2:dir { read getattr lock search ioctl add_name remove_name write };
|
||||
can_create_internal($1,$2,$4)
|
||||
type_transition $1 $2:$4 $3;
|
||||
|
||||
#
|
||||
# file_type_auto_trans($1,$2,$3):
|
||||
#
|
||||
@ -814,9 +806,9 @@ type_transition $1 $2:{ dir file lnk_file sock_file fifo_file } $3;
|
||||
#
|
||||
# file_type_auto_trans($1,$2,$3,$4):
|
||||
#
|
||||
# for each i in $4
|
||||
allow $1 $2:dir { read getattr lock search ioctl add_name remove_name write };
|
||||
can_create_internal($1,$2,$3,$4)
|
||||
# for each i in $4:
|
||||
can_create_internal($1,$3,$i)
|
||||
type_transition $1 $2:$i $3;
|
||||
|
||||
#
|
||||
@ -909,10 +901,12 @@ libraries_legacy_read_shared_libraries($1_t)
|
||||
libraries_legacy_use_dynamic_loader($1_t)
|
||||
|
||||
#
|
||||
# lock_domain():
|
||||
# lock_domain(): complete
|
||||
#
|
||||
type $1_lock_t, file_type, sysadmfile, lockfile;
|
||||
file_type_auto_trans($1_t, var_lock_t, $1_lock_t, file)
|
||||
type $1_lock_t;
|
||||
files_make_lock_file($1_lock_t)
|
||||
allow $1_t $1_lock_t:file { create ioctl read getattr lock write setattr append link unlink rename };
|
||||
files_create_private_lock_file($1_t,$1_lock_t)
|
||||
|
||||
#
|
||||
# log_domain(): complete
|
||||
|
Loading…
Reference in New Issue
Block a user