[selinux-policy: 2268/3172] term_write_all_terms() patch from Stefan Schulze Frielinghaus
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 22:21:26 UTC 2010
commit f67bc918d441699e199fcfaf54f16529111dc877
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Tue Sep 8 10:06:38 2009 -0400
term_write_all_terms() patch from Stefan Schulze Frielinghaus
policy/modules/kernel/terminal.if | 23 +++++++++++++++++++++++
1 files changed, 23 insertions(+), 0 deletions(-)
---
diff --git a/policy/modules/kernel/terminal.if b/policy/modules/kernel/terminal.if
index 38b493a..f89eaba 100644
--- a/policy/modules/kernel/terminal.if
+++ b/policy/modules/kernel/terminal.if
@@ -155,6 +155,29 @@ interface(`term_create_pty',`
########################################
## <summary>
+## Write the console, all
+## ttys and all ptys.
+## </summary>
+## <param name="domain">
+## <summary>
+## Domain allowed access.
+## </summary>
+## </param>
+## <rolecap/>
+#
+interface(`term_write_all_terms',`
+ gen_require(`
+ attribute ttynode, ptynode;
+ type console_device_t, devpts_t, tty_device_t;
+ ')
+
+ dev_list_all_dev_nodes($1)
+ allow $1 devpts_t:dir list_dir_perms;
+ allow $1 { console_device_t tty_device_t ttynode ptynode }:chr_file write_chr_file_perms;
+')
+
+########################################
+## <summary>
## Read and write the console, all
## ttys and all ptys.
## </summary>
More information about the scm-commits
mailing list