diff options
| author |   Chris PeBenito <cpebenito@tresys.com> | 2012-10-30 14:16:30 -0400 |
|---|---|---|
| committer |   Sven Vermeulen <sven.vermeulen@siphos.be> | 2012-10-30 19:28:47 +0100 |
| commit | d1c2b7bfe572630a384acd3f06a15061e2f39a1c (patch) | |
| tree | 0253e458d3240f4739c2f0470e2d2c028c65a771 /policy/modules/system/udev.if | |
| parent | For virtd (diff) | |
| download | hardened-refpolicy-d1c2b7bfe572630a384acd3f06a15061e2f39a1c.tar.gz hardened-refpolicy-d1c2b7bfe572630a384acd3f06a15061e2f39a1c.tar.bz2 hardened-refpolicy-d1c2b7bfe572630a384acd3f06a15061e2f39a1c.zip | |
Rearrange interfaces in files, clock, and udev.
Diffstat (limited to 'policy/modules/system/udev.if')
| -rw-r--r-- | policy/modules/system/udev.if | 52 |
1 files changed, 26 insertions, 26 deletions
diff --git a/policy/modules/system/udev.if b/policy/modules/system/udev.if index 8a0e803cc..c38f9b357 100644 --- a/policy/modules/system/udev.if +++ b/policy/modules/system/udev.if @@ -296,27 +296,27 @@ interface(`udev_pid_filetrans_db',` ######################################## ## <summary> -## Write dirs in /var/run with the udev_var_run file type. -## This method is deprecated in favor of the init_daemon_run_dir call. +## Search through udev pid content ## </summary> ## <param name="domain"> ## <summary> ## Domain allowed access. ## </summary> ## </param> -## <param name="name" optional="true"> -## <summary> -## Name of the directory that the file transition will work on -## </summary> -## </param> # -interface(`udev_generic_pid_filetrans_run_dirs',` - refpolicywarn(`$0($*) has been deprecated.') +interface(`udev_search_pids',` + gen_require(` + type udev_var_run_t; + ') + + files_search_var_lib($1) + search_dirs_pattern($1, udev_var_run_t, udev_var_run_t) ') ######################################## ## <summary> -## Read udev pid files +## Create, read, write, and delete +## udev run directories ## </summary> ## <param name="domain"> ## <summary> @@ -324,18 +324,18 @@ interface(`udev_generic_pid_filetrans_run_dirs',` ## </summary> ## </param> # -interface(`udev_read_pid_files',` +interface(`udev_manage_pid_dirs',` gen_require(` type udev_var_run_t; ') - files_search_pids($1) - read_files_pattern($1, udev_var_run_t, udev_var_run_t) + files_search_var_lib($1) + manage_dirs_pattern($1, udev_var_run_t, udev_var_run_t) ') ######################################## ## <summary> -## Search through udev pid files and directories +## Read udev pid files ## </summary> ## <param name="domain"> ## <summary> @@ -343,13 +343,13 @@ interface(`udev_read_pid_files',` ## </summary> ## </param> # -interface(`udev_search_pids',` +interface(`udev_read_pid_files',` gen_require(` type udev_var_run_t; ') - files_search_var_lib($1) - search_dirs_pattern($1, udev_var_run_t, udev_var_run_t) + files_search_pids($1) + read_files_pattern($1, udev_var_run_t, udev_var_run_t) ') @@ -375,20 +375,20 @@ interface(`udev_manage_pid_files',` ######################################## ## <summary> -## Create, read, write, and delete -## udev run directories +## Write dirs in /var/run with the udev_var_run file type. +## This method is deprecated in favor of the init_daemon_run_dir call. ## </summary> ## <param name="domain"> ## <summary> ## Domain allowed access. ## </summary> ## </param> +## <param name="name" optional="true"> +## <summary> +## Name of the directory that the file transition will work on +## </summary> +## </param> # -interface(`udev_manage_pid_dirs',` - gen_require(` - type udev_var_run_t; - ') - - files_search_var_lib($1) - manage_dirs_pattern($1, udev_var_run_t, udev_var_run_t) +interface(`udev_generic_pid_filetrans_run_dirs',` + refpolicywarn(`$0($*) has been deprecated.') ') |