for now, drop infoflow tags
This commit is contained in:
Chris PeBenito
parent
16e1cf48cd
commit
d90b274e40
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`dmesg_transition',`
|
||||
@ -43,7 +42,6 @@ define(`dmesg_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`dmesg_execute',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`rpm_transition',`
|
||||
@ -49,7 +48,6 @@ define(`rpm_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the RPM domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`rpm_transition_add_role_use_terminal',`
|
||||
@ -75,7 +73,6 @@ define(`rpm_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`rpm_use_file_descriptors',`
|
||||
@ -98,7 +95,6 @@ define(`rpm_use_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`rpm_read_pipe',`
|
||||
@ -121,7 +117,6 @@ define(`rpm_read_pipe_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`rpm_read_package_database',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`usermanage_chfn_transition',`
|
||||
@ -50,7 +49,6 @@ define(`usermanage_chfn_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the chfn domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`usermanage_chfn_transition_add_role_use_terminal',`
|
||||
@ -75,7 +73,6 @@ define(`usermanage_chfn_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`usermanage_groupadd_transition',`
|
||||
@ -112,7 +109,6 @@ define(`usermanage_groupadd_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the groupadd domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`usermanage_groupadd_transition_add_role_use_terminal',`
|
||||
@ -137,7 +133,6 @@ define(`usermanage_groupadd_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`usermanage_passwd_transition',`
|
||||
@ -178,7 +173,6 @@ define(`usermanage_passwd_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the passwd domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`usermanage_passwd_transition_add_role_use_terminal',`
|
||||
@ -203,7 +197,6 @@ define(`usermanage_passwd_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`usermanage_useradd_transition',`
|
||||
@ -244,7 +237,6 @@ define(`usermanage_useradd_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the useradd domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`usermanage_useradd_transition_add_role_use_terminal',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`bootloader_domtrans',`
|
||||
@ -48,7 +47,6 @@ define(`bootloader_domtrans_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the bootloader domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`bootloader_run',`
|
||||
|
||||
@ -233,7 +233,6 @@ define(`devices_ignore_get_generic_character_device_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`devices_remove_dev_symbolic_links',`
|
||||
|
||||
@ -1490,7 +1490,6 @@ define(`fs_getattr_tmpfs_depend',`
|
||||
## <parameter name="type">
|
||||
## The type of the object to be associated.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`fs_associate_tmpfs',`
|
||||
@ -1537,7 +1536,6 @@ define(`fs_create_private_tmpfs_data_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`fs_use_tmpfs_character_devices',`
|
||||
@ -1562,7 +1560,6 @@ define(`fs_use_tmpfs_character_devices_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`fs_relabel_tmpfs_character_devices',`
|
||||
@ -1587,7 +1584,6 @@ define(`fs_relabel_tmpfs_character_devices_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`fs_use_tmpfs_block_devices',`
|
||||
@ -1612,7 +1608,6 @@ define(`fs_use_tmpfs_block_devices_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`fs_relabel_tmpfs_block_devices',`
|
||||
@ -1638,7 +1633,6 @@ define(`fs_use_tmpfs_block_devices_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`fs_manage_tmpfs_character_devices',`
|
||||
@ -1664,7 +1658,6 @@ define(`fs_manage_tmpfs_character_devices_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`fs_manage_tmpfs_block_devices',`
|
||||
|
||||
@ -19,7 +19,6 @@
|
||||
## <parameter name="entrypoint">
|
||||
## The executable type for the entrypoint.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_make_userland_entrypoint',`
|
||||
@ -55,7 +54,6 @@ define(`kernel_make_userland_entrypoint_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process with which to share state information.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="7" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_share_state',`
|
||||
@ -81,7 +79,6 @@ define(`kernel_share_state_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process using the descriptors.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="1" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_use_file_descriptors',`
|
||||
@ -109,7 +106,6 @@ define(`kernel_use_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of process not to audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_ignore_use_file_descriptors',`
|
||||
@ -137,7 +133,6 @@ define(`kernel_ignore_use_file_descriptors_depend',`
|
||||
## <parameter name="mountpoint">
|
||||
## The type of the directory to use as a mountpoint.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_make_root_fs_mountpoint',`
|
||||
@ -164,7 +159,6 @@ define(`kernel_make_root_fs_mountpoint_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to make an exception to the constraint.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_make_process_identity_change_constraint_exception',`
|
||||
@ -189,7 +183,6 @@ define(`kernel_make_process_identity_change_constraint_exception_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to make an exception to the constraint.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_make_role_change_constraint_exception',`
|
||||
@ -214,7 +207,6 @@ define(`kernel_make_role_change_constraint_exception_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to make an exception to the constraint.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_make_object_identity_change_constraint_exception',`
|
||||
@ -239,7 +231,6 @@ define(`kernel_make_object_identity_change_constraint_exception_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to allow to load kernel modules.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_load_module',`
|
||||
@ -268,7 +259,6 @@ define(`kernel_load_module_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to allow to get the enforcing mode.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_get_selinux_enforcement_mode',`
|
||||
@ -297,7 +287,6 @@ define(`kernel_get_selinux_enforcement_mode_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to allow to set the enforcement mode.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_set_selinux_enforcement_mode',`
|
||||
@ -331,7 +320,6 @@ define(`kernel_set_selinux_enforcement_mode_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type that will load the policy.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_load_selinux_policy',`
|
||||
@ -370,7 +358,6 @@ define(`kernel_load_selinux_policy_depend',`
|
||||
## <parameter name="booltype" optional="true">
|
||||
## The type of Booleans the caller is allowed to set.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_set_selinux_boolean',`
|
||||
@ -408,7 +395,6 @@ define(`kernel_set_selinux_boolean_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to allow to set security parameters.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_set_selinux_security_parameters',`
|
||||
@ -442,7 +428,6 @@ define(`kernel_set_selinux_security_parameters_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type permitted to validate contexts.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_validate_selinux_context',`
|
||||
@ -472,7 +457,6 @@ define(`kernel_validate_selinux_context_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type allowed to compute an access vector.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_compute_selinux_access_vector',`
|
||||
@ -502,7 +486,6 @@ define(`kernel_compute_selinux_access_vector_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_compute_selinux_create_context',`
|
||||
@ -532,7 +515,6 @@ define(`kernel_compute_selinux_create_context_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_compute_selinux_relabel_context',`
|
||||
@ -562,7 +544,6 @@ define(`kernel_compute_selinux_relabel_context_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type allowed to compute user contexts.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_compute_selinux_reachable_user_contexts',`
|
||||
@ -592,7 +573,6 @@ define(`kernel_compute_selinux_reachable_user_contexts_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type allowed to read the ring buffer.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_ring_buffer',`
|
||||
@ -619,7 +599,6 @@ define(`kernel_read_ring_buffer_depend',`
|
||||
## <parameter name="domain">
|
||||
## The domain to not audit.
|
||||
## </parameter>
|
||||
## <infoflow type="" weight=""/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_ignore_read_ring_buffer',`
|
||||
@ -645,7 +624,6 @@ define(`kernel_ignore_read_ring_buffer_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_change_ring_buffer_level',`
|
||||
@ -671,7 +649,6 @@ define(`kernel_change_ring_buffer_level_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type clearing the buffer.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="8"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_clear_ring_buffer',`
|
||||
@ -697,7 +674,6 @@ define(`kernel_clear_ring_buffer_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_get_sysvipc_info',`
|
||||
@ -723,7 +699,6 @@ define(`kernel_get_sysvipc_info_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type requesting the selinuxfs mountpoint.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_get_selinuxfs_mount_point',`
|
||||
@ -754,7 +729,6 @@ define(`kernel_get_selinuxfs_mount_point_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading the system state information.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_system_state',`
|
||||
@ -785,7 +759,6 @@ define(`kernel_read_system_state_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type not to audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_ignore_read_system_state',`
|
||||
@ -811,7 +784,6 @@ define(`kernel_ignore_read_system_state_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading software raid state.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_software_raid_state',`
|
||||
@ -839,7 +811,6 @@ define(`kernel_read_software_raid_state_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type getting the attibutes.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_get_core_interface_attributes',`
|
||||
@ -869,7 +840,6 @@ define(`kernel_get_core_interface_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to not audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_ignore_get_core_interface_attributes',`
|
||||
@ -895,7 +865,6 @@ define(`kernel_ignore_get_core_interface_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading the messages.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_messages',`
|
||||
@ -927,7 +896,6 @@ define(`kernel_read_messages_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type getting the attributes.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_get_message_interface_attributes',`
|
||||
@ -957,7 +925,6 @@ define(`kernel_get_message_interface_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type not to audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_ignore_get_message_interface_attributes',`
|
||||
@ -983,7 +950,6 @@ define(`kernel_ignore_get_message_interface_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading the state.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
##
|
||||
#
|
||||
@ -1013,7 +979,6 @@ define(`kernel_read_network_state_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type not to audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
##
|
||||
#
|
||||
@ -1040,7 +1005,6 @@ define(`kernel_ignore_search_sysctl_dir_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type to allow to read the sysctl device.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_device_sysctl',`
|
||||
@ -1070,7 +1034,6 @@ define(`kernel_read_device_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying the sysctl device.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_device_sysctl',`
|
||||
@ -1099,7 +1062,6 @@ define(`kernel_modify_device_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
##
|
||||
#
|
||||
@ -1129,7 +1091,6 @@ define(`kernel_read_virtual_memory_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying sysctl virtual memory.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_virtual_memory_sysctl',`
|
||||
@ -1159,7 +1120,6 @@ define(`kernel_modify_virtual_memory_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type not to audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_ignore_search_network_sysctl_dir',`
|
||||
@ -1185,7 +1145,6 @@ define(`kernel_ignore_search_network_sysctl_dir_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading sysctl network files.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
##
|
||||
#
|
||||
@ -1217,7 +1176,6 @@ define(`kernel_read_network_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying sysctl network files.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_network_sysctl',`
|
||||
@ -1247,7 +1205,6 @@ define(`kernel_modify_network_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading unix sysctl files.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_unix_sysctl',`
|
||||
@ -1277,7 +1234,6 @@ define(`kernel_read_net_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying contents of unix sysctl files.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_unix_sysctl',`
|
||||
@ -1307,7 +1263,6 @@ define(`kernel_modify_net_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading hotplug data.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_hotplug_sysctl',`
|
||||
@ -1337,7 +1292,6 @@ define(`kernel_read_hotplug_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying hotplug sysctl data.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_hotplug_sysctl',`
|
||||
@ -1367,7 +1321,6 @@ define(`kernel_modify_hotplug_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process domian reading modprobe information files.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_modprobe_sysctl',`
|
||||
@ -1397,7 +1350,6 @@ define(`kernel_read_modprobe_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process domian modifying modprobe information files.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_modprobe_sysctl',`
|
||||
@ -1427,7 +1379,6 @@ define(`kernel_modify_modprobe_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading kernel sysctl files.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_kernel_sysctl',`
|
||||
@ -1457,7 +1408,6 @@ define(`kernel_read_kernel_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying kernel sysctl files.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_kernel_sysctl',`
|
||||
@ -1487,7 +1437,6 @@ define(`kernel_modify_kernel_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading filesystem information.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_fs_sysctl',`
|
||||
@ -1519,7 +1468,6 @@ define(`kernel_read_fs_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying filesystem information.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_fs_sysctl',`
|
||||
@ -1549,7 +1497,6 @@ define(`kernel_modify_fs_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading interrupt request information.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_irq_sysctl',`
|
||||
@ -1578,7 +1525,6 @@ define(`kernel_read_irq_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying interrupt request information.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
##
|
||||
#
|
||||
@ -1648,7 +1594,6 @@ define(`kernel_modify_rpc_sysctl_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading the information.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_all_sysctl',`
|
||||
@ -1675,7 +1620,6 @@ define(`kernel_read_all_sysctl',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying the information.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_all_sysctl',`
|
||||
@ -1699,7 +1643,6 @@ define(`kernel_modify_all_sysctl',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_search_hardware_state_dir',`
|
||||
@ -1725,7 +1668,6 @@ define(`kernel_search_hardware_state_dir_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type reading hardware state information.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_hardware_state',`
|
||||
@ -1754,7 +1696,6 @@ define(`kernel_read_hardware_state_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying hardware state information.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_hardware_config_option',`
|
||||
@ -1781,7 +1722,6 @@ define(`kernel_modify_hardware_config_option_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_kill_unlabeled_process',`
|
||||
@ -1804,7 +1744,6 @@ define(`kernel_kill_unlabeled_process_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_signal_unlabeled_process',`
|
||||
@ -1827,7 +1766,6 @@ define(`kernel_signal_unlabeled_process_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_signull_unlabeled_process',`
|
||||
@ -1850,7 +1788,6 @@ define(`kernel_signull_unlabeled_process_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_sigstop_unlabeled_process',`
|
||||
@ -1873,7 +1810,6 @@ define(`kernel_sigstop_unlabeled_process_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_sigchld_unlabeled_process',`
|
||||
@ -1901,7 +1837,6 @@ define(`kernel_sigchld_unlabeled_process_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type not to audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none" />
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_ignore_get_unlabeled_block_device_attributes',`
|
||||
@ -1927,7 +1862,6 @@ define(`kernel_ignore_get_unlabeled_block_device_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type relabeling the objects.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight=""/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_relabel_unlabeled_object',`
|
||||
@ -1956,7 +1890,6 @@ define(`kernel_relabel_unlabeled_object_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_search_usb_hardware_state_dir',`
|
||||
@ -1982,7 +1915,6 @@ define(`kernel_search_usb_hardware_state_dir_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type getting the list.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_list_usb_hardware',`
|
||||
@ -2010,7 +1942,6 @@ define(`kernel_list_usb_hardware_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_usb_hardware_state',`
|
||||
@ -2039,7 +1970,6 @@ define(`kernel_read_usb_hardware_state_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type modifying the options.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_modify_usb_hardware_config_option',`
|
||||
@ -2078,7 +2008,6 @@ define(`kernel_modify_usb_hardware_config_option_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type receiving the signal.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_sigchld_from',`
|
||||
@ -2104,7 +2033,6 @@ define(`kernel_sigchld_from_depend',`
|
||||
## <parameter name="domain">
|
||||
## The process type receiving the signal.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_unlabeled_sigchld_from',`
|
||||
@ -2130,7 +2058,6 @@ define(`kernel_unlabeled_sigchld_from_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`kernel_read_directory_from',`
|
||||
|
||||
@ -10,7 +10,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_get_fixed_disk_attributes',`
|
||||
@ -35,7 +34,6 @@ define(`storage_get_fixed_disk_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process to not audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_ignore_get_fixed_disk_attributes',`
|
||||
@ -59,7 +57,6 @@ define(`storage_ignore_get_fixed_disk_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_set_fixed_disk_attributes',`
|
||||
@ -86,7 +83,6 @@ define(`storage_set_fixed_disk_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_raw_read_fixed_disk',`
|
||||
@ -116,7 +112,6 @@ define(`storage_raw_read_fixed_disk_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_raw_write_fixed_disk',`
|
||||
@ -143,7 +138,6 @@ define(`storage_raw_write_fixed_disk_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_create_fixed_disk_dev_entry',`
|
||||
@ -168,7 +162,6 @@ define(`storage_create_fixed_disk_dev_entry_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_manage_fixed_disk',`
|
||||
@ -198,7 +191,6 @@ define(`storage_manage_fixed_disk_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_raw_read_lvm_volume',`
|
||||
@ -228,7 +220,6 @@ define(`storage_raw_read_lvm_volume_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_raw_write_lvm_volume',`
|
||||
@ -259,7 +250,6 @@ define(`storage_raw_write_lvm_volume_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_read_scsi_generic',`
|
||||
@ -290,7 +280,6 @@ define(`storage_read_scsi_generic_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_write_scsi_generic',`
|
||||
@ -352,7 +341,6 @@ define(`storage_set_scsi_generic_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_get_removable_device_attributes',`
|
||||
@ -377,7 +365,6 @@ define(`storage_get_removable_device_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process to not audit.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`storage_ignore_get_removable_device_attributes',`
|
||||
|
||||
@ -25,15 +25,13 @@ define(`term_make_pty_depend',`
|
||||
## <description>
|
||||
## Transform specified type into a user
|
||||
## pty type. Interactive ptys will be relabeled
|
||||
##
|
||||
## </description>
|
||||
## <parameter name="userdomain">
|
||||
## An object type that will applied to a pty.
|
||||
## The userdomain associated with this pty.
|
||||
## </parameter>
|
||||
## <parameter name="pty_type">
|
||||
## An object type that will applied to a pty.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`term_make_user_pty',`
|
||||
@ -58,7 +56,6 @@ define(`term_make_user_pty_depend',`
|
||||
## <parameter name="object_type">
|
||||
## An object type that will applied to a pty.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`term_make_interactive_pty',`
|
||||
@ -151,7 +148,6 @@ define(`term_use_all_terminals_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`term_write_console',`
|
||||
@ -174,7 +170,6 @@ define(`term_use_console_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`term_use_console',`
|
||||
@ -198,7 +193,6 @@ define(`term_use_console_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`term_dontaudit_use_console',`
|
||||
@ -462,7 +456,6 @@ define(`term_reset_tty_labels_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`term_write_general_tty',`
|
||||
@ -587,7 +580,6 @@ define(`term_relabel_all_private_ttys_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`term_write_all_private_ttys',`
|
||||
|
||||
@ -219,7 +219,6 @@ define(`mta_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`mta_read_mail_aliases',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`remotelogin_domtrans',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`sendmail_domtrans',`
|
||||
|
||||
@ -13,7 +13,6 @@
|
||||
## <parameter name="userdomain_prefix">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
|
||||
@ -119,7 +118,6 @@ define(`authlogin_per_userdomain_template_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
|
||||
@ -148,7 +146,6 @@ define(`authlogin_make_login_program_entrypoint_depend',`
|
||||
## <parameter name="target_domain">
|
||||
## The type of the login_program process.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`authlogin_login_program_transition',`
|
||||
@ -186,7 +183,6 @@ define(`authlogin_login_program_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -242,7 +238,6 @@ define(`authlogin_check_password_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -272,7 +267,6 @@ define(`authlogin_ignore_get_shadow_passwords_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -306,7 +300,6 @@ define(`authlogin_read_shadow_passwords_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -336,7 +329,6 @@ define(`authlogin_ignore_read_shadow_passwords_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -441,7 +433,6 @@ define(`authlogin_modify_last_login_log_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`authlogin_pam_transition',`
|
||||
@ -476,9 +467,8 @@ define(`authlogin_pam_transition_depend',`
|
||||
## The role to allow the PAM domain.
|
||||
## </parameter>
|
||||
## <parameter name="terminal">
|
||||
B## The type of the terminal allow the PAM domain to use.
|
||||
## The type of the terminal allow the PAM domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`authlogin_pam_transition_add_role_use_terminal',`
|
||||
@ -506,7 +496,6 @@ define(`authlogin_pam_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -556,7 +545,6 @@ define(`authlogin_pam_read_runtime_data_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -614,7 +602,6 @@ define(`authlogin_pam_console_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -690,7 +677,6 @@ define(`authlogin_pam_console_manage_runtime_data_depend',`
|
||||
## The types to be excluded. Each type or attribute
|
||||
## must be negated by the caller.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
|
||||
@ -717,7 +703,6 @@ define(`authlogin_relabel_all_files_except_shadow_depend',`
|
||||
## The types to be excluded. Each type or attribute
|
||||
## must be negated by the caller.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
|
||||
@ -739,7 +724,6 @@ define(`authlogin_manage_all_files_except_shadow_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`authlogin_utempter_transition',`
|
||||
@ -776,7 +760,6 @@ define(`authlogin_utempter_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the utempter domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`authlogin_utempter_transition_add_role_use_terminal',`
|
||||
@ -804,7 +787,6 @@ define(`authlogin_utempter_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
@ -832,7 +814,6 @@ define(`authlogin_read_login_records_depend',`
|
||||
## <parameter name="domain">
|
||||
##
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`clock_transition',`
|
||||
@ -47,7 +46,6 @@ define(`clock_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the clock domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`clock_transition_add_role_use_terminal',`
|
||||
@ -72,7 +70,6 @@ define(`clock_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="execute" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`clock_execute',`
|
||||
@ -95,7 +92,6 @@ define(`clock_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`clock_modify_drift_records',`
|
||||
|
||||
@ -193,7 +193,6 @@ define(`corecommands_execute_shell_depend',`
|
||||
## <parameter name="target_domain">
|
||||
## The type of the shell process.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`corecommands_shell_explicit_transition',`
|
||||
@ -233,7 +232,6 @@ define(`corecommands_shell_explicit_transition_depend',`
|
||||
## <parameter name="target_domain">
|
||||
## The type of the shell process.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`corecommands_shell_transition',`
|
||||
|
||||
@ -141,7 +141,6 @@ define(`domain_set_all_domains_priorities_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_signal_all_domains',`
|
||||
@ -164,7 +163,6 @@ define(`domain_signal_all_domains_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_signull_all_domains',`
|
||||
@ -187,7 +185,6 @@ define(`domain_signull_all_domains_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_sigstop_all_domains',`
|
||||
@ -210,7 +207,6 @@ define(`domain_sigstop_all_domains_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_sigchld_all_domains',`
|
||||
@ -233,7 +229,6 @@ define(`domain_sigchld_all_domains_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_kill_all_domains',`
|
||||
@ -258,7 +253,6 @@ define(`domain_kill_all_domains_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_read_all_domains_process_state',`
|
||||
@ -294,7 +288,6 @@ define(`domain_read_all_domains_process_state_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_ignore_read_all_domains_process_dirs',`
|
||||
@ -318,7 +311,6 @@ define(`domain_ignore_read_all_domains_process_dirs_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_get_all_domains_session_id',`
|
||||
@ -342,7 +334,6 @@ define(`domain_get_all_domains_session_id_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_ignore_get_all_domains_udp_socket_attributes',`
|
||||
@ -366,7 +357,6 @@ define(`domain_ignore_get_all_domains_udp_socket_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_ignore_get_all_domains_tcp_socket_attributes',`
|
||||
@ -390,7 +380,6 @@ define(`domain_ignore_get_all_domains_tcp_socket_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_ignore_get_all_domains_unix_dgram_socket_attributes',`
|
||||
@ -414,7 +403,6 @@ define(`domain_ignore_get_all_domains_unix_dgram_socket_attributes_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`domain_ignore_get_all_domains_pipe_attributes',`
|
||||
|
||||
@ -86,7 +86,6 @@ define(`files_make_temporary_file_depend',`
|
||||
## <parameter name="type">
|
||||
## The type to be transformed.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`files_make_tmpfs_file',`
|
||||
@ -138,7 +137,6 @@ define(`files_get_all_file_attributes_depend',`
|
||||
## The types to be excluded. Each type or attribute
|
||||
## must be negated by the caller.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`files_relabel_all_files',`
|
||||
@ -181,7 +179,6 @@ define(`files_relabel_all_files_depend',`
|
||||
## The types to be excluded. Each type or attribute
|
||||
## must be negated by the caller.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`files_manage_all_files',`
|
||||
@ -418,7 +415,6 @@ define(`files_ignore_modify_rootfs_device_depend',`
|
||||
## <parameter name="object" optional="true">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`files_create_private_root_dir_entry',`
|
||||
@ -504,7 +500,7 @@ define(`files_read_general_system_config_directory_depend',`
|
||||
')
|
||||
|
||||
########################################
|
||||
A#
|
||||
#
|
||||
# files_read_general_system_config(domain)
|
||||
#
|
||||
define(`files_read_general_system_config',`
|
||||
@ -571,7 +567,6 @@ define(`files_manage_general_system_config_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`files_remove_general_system_config',`
|
||||
@ -744,7 +739,6 @@ define(`files_ignore_search_isid_type_dir_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`files_list_home_directories',`
|
||||
@ -864,7 +858,6 @@ define(`files_read_general_application_resources_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`files_execute_system_source_code_scripts',`
|
||||
@ -1133,7 +1126,6 @@ define(`files_modify_system_runtime_data_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
|
||||
@ -1157,7 +1149,6 @@ define(`files_ignore_write_all_daemon_runtime_data_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`getty_transition',`
|
||||
@ -43,7 +42,6 @@ define(`getty_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`getty_read_log_file',`
|
||||
@ -66,7 +64,6 @@ define(`getty_read_log_file_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`getty_read_config_file',`
|
||||
@ -89,7 +86,6 @@ define(`getty_read_config_file_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`getty_modify_config_file',`
|
||||
|
||||
@ -10,7 +10,6 @@
|
||||
## The type of the process performing this action.
|
||||
## Has a sigchld signal backchannel.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`hostname_transition',`
|
||||
@ -52,7 +51,6 @@ define(`hostname_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the hostname domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`hostname_transition_add_role_use_terminal',`
|
||||
@ -78,7 +76,6 @@ define(`hostname_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
#######################################
|
||||
|
||||
@ -104,7 +104,6 @@ define(`hotplug_ignore_search_config_directory_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`hotplug_read_config',`
|
||||
|
||||
@ -329,7 +329,6 @@ define(`init_script_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`init_script_read_process_state',`
|
||||
@ -444,7 +443,6 @@ define(`init_script_ignore_use_pseudoterminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`init_script_modify_temporary_data',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`iptables_transition',`
|
||||
@ -50,7 +49,6 @@ define(`iptables_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the iptables domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`iptables_transition_add_role_use_terminal',`
|
||||
@ -75,7 +73,6 @@ define(`iptables_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`iptables_execute',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_ldconfig_transition',`
|
||||
@ -49,7 +48,6 @@ define(`libraries_ldconfig_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the ldconfig domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_ldconfig_transition_add_role_use_terminal',`
|
||||
@ -75,7 +73,6 @@ define(`libraries_ldconfig_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_use_dynamic_loader',`
|
||||
@ -106,7 +103,6 @@ define(`libraries_use_dynamic_loader_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_legacy_use_dynamic_loader',`
|
||||
@ -136,7 +132,6 @@ define(`libraries_legacy_use_dynamic_loader_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_execute_dynamic_loader',`
|
||||
@ -165,7 +160,6 @@ define(`libraries_execute_dynamic_loader_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_modify_dynamic_loader_cache',`
|
||||
@ -190,7 +184,6 @@ define(`libraries_modify_dynamic_loader_cache_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_read_library_resources',`
|
||||
@ -216,7 +209,6 @@ define(`libraries_read_library_resources_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_execute_library_scripts',`
|
||||
@ -243,7 +235,6 @@ define(`libraries_execute_library_scripts_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_use_shared_libraries',`
|
||||
@ -273,7 +264,6 @@ define(`libraries_use_shared_libraries_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`libraries_legacy_use_shared_libraries',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`locallogin_transition',`
|
||||
@ -30,7 +29,6 @@ define(`locallogin_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
########################################
|
||||
|
||||
@ -76,7 +76,6 @@ define(`logging_send_system_log_message_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="3"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`logging_search_system_log_directory',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`lvm_transition',`
|
||||
@ -46,7 +45,6 @@ define(`lvm_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the LVM domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`lvm_transition_add_role_use_terminal',`
|
||||
@ -71,7 +69,6 @@ define(`lvm_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`lvm_read_config',`
|
||||
|
||||
@ -13,7 +13,6 @@
|
||||
## <parameter name="domain">
|
||||
## Type type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`miscfiles_manage_man_page_cache',`
|
||||
@ -42,7 +41,6 @@ define(`miscfiles_manage_man_page_cache_depend',`
|
||||
## <parameter name="domain">
|
||||
## Type type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`miscfiles_read_fonts',`
|
||||
@ -73,7 +71,6 @@ define(`miscfiles_read_fonts_depend',`
|
||||
## <parameter name="domain">
|
||||
## Type type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`miscfiles_read_localization',`
|
||||
@ -108,7 +105,6 @@ define(`miscfiles_read_localization_depend',`
|
||||
## <parameter name="domain">
|
||||
## Type type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`miscfiles_legacy_read_localization',`
|
||||
@ -135,7 +131,6 @@ define(`miscfiles_read_localization_depend',`
|
||||
## <parameter name="domain">
|
||||
## Type type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`miscfiles_read_man_pages',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`modutils_read_kernel_module_dependencies',`
|
||||
@ -35,7 +34,6 @@ define(`modutils_read_kernel_module_dependencies_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`modutils_read_kernel_module_loading_config',`
|
||||
@ -59,7 +57,6 @@ define(`modutils_read_kernel_module_loading_config_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`modutils_insmod_transition',`
|
||||
@ -99,7 +96,6 @@ define(`modutils_insmod_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the insmod domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`modutils_insmod_transition_add_role_use_terminal',`
|
||||
@ -140,7 +136,6 @@ define(`modutils_insmod_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`modutils_depmod_transition',`
|
||||
@ -177,7 +172,6 @@ define(`modutils_depmod_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the depmod domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`modutils_depmod_transition_add_role_use_terminal',`
|
||||
@ -218,7 +212,6 @@ define(`modutils_depmod_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`modutils_update_modules_transition',`
|
||||
@ -255,7 +248,6 @@ define(`modutils_update_modules_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the update_modules domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`modutils_update_modules_transition_add_role_use_terminal',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`mount_transition',`
|
||||
@ -51,7 +50,6 @@ define(`mount_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the mount domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`mount_transition_add_role_use_terminal',`
|
||||
@ -76,7 +74,6 @@ define(`mount_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="use" weight="4"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`mount_use_file_descriptors',`
|
||||
@ -100,7 +97,6 @@ define(`mount_use_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write read " weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`mount_send_nfs_client_request',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_checkpolicy_transition',`
|
||||
@ -52,7 +51,6 @@ define(`selinux_checkpolicy_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the checkpolicy domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_checkpolicy_transition_add_role_use_terminal',`
|
||||
@ -93,7 +91,6 @@ define(`selinux_checkpolicy_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_load_policy_transition',`
|
||||
@ -136,7 +133,6 @@ define(`selinux_load_policy_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the load_policy domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_load_policy_transition_add_role_use_terminal',`
|
||||
@ -193,7 +189,6 @@ define(`selinux_read_load_policy_binary_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_newrole_transition',`
|
||||
@ -235,7 +230,6 @@ define(`selinux_newrole_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the newrole domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_newrole_transition_add_role_use_terminal',`
|
||||
@ -277,7 +271,6 @@ define(`selinux_newrole_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_newrole_ignore_signal',`
|
||||
@ -332,7 +325,6 @@ define(`selinux_newrole_use_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_restorecon_transition',`
|
||||
@ -374,7 +366,6 @@ define(`selinux_restorecon_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the restorecon domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_restorecon_transition_add_role_use_terminal',`
|
||||
@ -414,7 +405,6 @@ define(`selinux_restorecon_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_run_init_transition',`
|
||||
@ -456,7 +446,6 @@ define(`selinux_run_init_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the run_init domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_run_init_transition_add_role_use_terminal',`
|
||||
@ -497,7 +486,6 @@ define(`selinux_run_init_use_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_setfiles_transition',`
|
||||
@ -539,7 +527,6 @@ define(`selinux_setfiles_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the setfiles domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_setfiles_transition_add_role_use_terminal',`
|
||||
@ -675,7 +662,6 @@ define(`selinux_write_binary_policy_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_relabelto_binary_policy',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_checkpolicy_transition',`
|
||||
@ -52,7 +51,6 @@ define(`selinux_checkpolicy_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the checkpolicy domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_checkpolicy_transition_add_role_use_terminal',`
|
||||
@ -93,7 +91,6 @@ define(`selinux_checkpolicy_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_load_policy_transition',`
|
||||
@ -136,7 +133,6 @@ define(`selinux_load_policy_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the load_policy domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_load_policy_transition_add_role_use_terminal',`
|
||||
@ -193,7 +189,6 @@ define(`selinux_read_load_policy_binary_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_newrole_transition',`
|
||||
@ -235,7 +230,6 @@ define(`selinux_newrole_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the newrole domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_newrole_transition_add_role_use_terminal',`
|
||||
@ -277,7 +271,6 @@ define(`selinux_newrole_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_newrole_ignore_signal',`
|
||||
@ -332,7 +325,6 @@ define(`selinux_newrole_use_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_restorecon_transition',`
|
||||
@ -374,7 +366,6 @@ define(`selinux_restorecon_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the restorecon domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_restorecon_transition_add_role_use_terminal',`
|
||||
@ -414,7 +405,6 @@ define(`selinux_restorecon_execute_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_run_init_transition',`
|
||||
@ -456,7 +446,6 @@ define(`selinux_run_init_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the run_init domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_run_init_transition_add_role_use_terminal',`
|
||||
@ -497,7 +486,6 @@ define(`selinux_run_init_use_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_setfiles_transition',`
|
||||
@ -539,7 +527,6 @@ define(`selinux_setfiles_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the setfiles domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_setfiles_transition_add_role_use_terminal',`
|
||||
@ -675,7 +662,6 @@ define(`selinux_write_binary_policy_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`selinux_relabelto_binary_policy',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="3"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`sysnetwork_dhcpc_transition',`
|
||||
@ -40,7 +39,6 @@ define(`sysnetwork_dhcpc_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`sysnetwork_ifconfig_transition',`
|
||||
@ -79,7 +77,6 @@ define(`sysnetwork_ifconfig_transition_depend',`
|
||||
## <parameter name="terminal">
|
||||
## The type of the terminal allow the ifconfig domain to use.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`sysnetwork_ifconfig_transition_add_role_use_terminal',`
|
||||
@ -104,7 +101,6 @@ define(`sysnetwork_ifconfig_transition_add_role_use_terminal_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="3"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`sysnetwork_read_network_config',`
|
||||
|
||||
@ -9,7 +9,6 @@
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="execute" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`udev_transition',`
|
||||
@ -40,7 +39,6 @@ define(`udev_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="3"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`udev_read_database',`
|
||||
@ -63,7 +61,6 @@ define(`udev_read_database_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`udev_modify_database',`
|
||||
|
||||
@ -816,7 +816,6 @@ define(`admin_domain_template',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_all_users_explicit_transition',`
|
||||
@ -836,7 +835,6 @@ define(`userdomain_all_users_explicit_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_sysadm_shell_transition',`
|
||||
@ -858,7 +856,6 @@ define(`userdomain_sysadm_shell_transition_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="both" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_use_admin_terminals',`
|
||||
@ -883,7 +880,6 @@ define(`userdomain_use_admin_terminals_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_dontaudit_use_admin_terminals',`
|
||||
@ -906,7 +902,6 @@ define(`userdomain_dontaudit_use_admin_terminals_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="7"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_search_all_users_home_dirs',`
|
||||
@ -930,7 +925,6 @@ define(`userdomain_search_all_users_home_dirs_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="10"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_read_all_users_data',`
|
||||
@ -956,7 +950,6 @@ define(`userdomain_read_all_users_data_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_use_all_users_file_descriptors',`
|
||||
@ -979,7 +972,6 @@ define(`userdomain_use_all_users_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="write" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_signal_all_userdomains',`
|
||||
@ -1002,7 +994,6 @@ define(`userdomain_signal_all_userdomains_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="read" weight="1"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_use_all_unprivileged_users_file_descriptors',`
|
||||
@ -1026,7 +1017,6 @@ define(`userdomain_use_all_unprivileged_users_file_descriptors_depend',`
|
||||
## <parameter name="domain">
|
||||
## The type of the process performing this action.
|
||||
## </parameter>
|
||||
## <infoflow type="none"/>
|
||||
## </interface>
|
||||
#
|
||||
define(`userdomain_ignore_use_all_unprivileged_users_file_descriptors',`
|
||||
|
||||
Loading…
Reference in New Issue
Block a user