source: selinux/build/zephyr.te @ 84

Last change on this file since 84 was 84, checked in by presbrey, 15 years ago
preliminary zephyr support
File size: 933 bytes
Line 
1policy_module(zephyr,1.0.0)
2
3########################################
4#
5# Declarations
6#
7
8type zephyr_t;
9type zephyr_bin_t;
10type zephyr_exec_t;
11domain_type(zephyr_t)
12init_daemon_domain(zephyr_t, zephyr_exec_t)
13
14########################################
15#
16# AFS local policy
17
18files_read_etc_files(zephyr_t)
19files_rw_etc_runtime_files(zephyr_t)
20libs_use_ld_so(zephyr_t)
21libs_use_shared_libs(zephyr_t)
22miscfiles_read_localization(zephyr_t)
23
24# Init script handling
25init_use_fds(zephyr_t)
26init_use_script_ptys(zephyr_t)
27domain_use_interactive_fds(zephyr_t)
28term_use_console(zephyr_t)
29
30allow zephyr_t self:process setsched;
31allow zephyr_t self:capability { sys_admin sys_nice sys_tty_config};
32
33sysnet_dns_name_resolve(zephyr_t)
34corenet_tcp_sendrecv_all_nodes(zephyr_t)
35corenet_udp_sendrecv_all_nodes(zephyr_t)
36corenet_tcp_sendrecv_all_ports(zephyr_t)
37corenet_udp_sendrecv_all_ports(zephyr_t)
38
39#allow zephyr_bin_t fs_t:filesystem associate;
Note: See TracBrowser for help on using the repository browser.