diff options
| author | Chris PeBenito <cpebenito@tresys.com> | 2009-09-08 10:06:38 -0400 |
|---|---|---|
| committer | Chris PeBenito <cpebenito@tresys.com> | 2009-09-08 10:06:38 -0400 |
| commit | f67bc918d441699e199fcfaf54f16529111dc877 (patch) | |
| tree | d2aa33329da67b8dd570d11f6910b706d92bc459 | |
| parent | dbed95369cf3e387abe8d43bf632093e64d80d37 (diff) | |
term_write_all_terms() patch from Stefan Schulze Frielinghaus
| -rw-r--r-- | policy/modules/kernel/terminal.if | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/policy/modules/kernel/terminal.if b/policy/modules/kernel/terminal.if index 38b493a7..f89eaba0 100644 --- a/policy/modules/kernel/terminal.if +++ b/policy/modules/kernel/terminal.if @@ -155,6 +155,29 @@ interface(`term_create_pty',` ######################################## ## <summary> +## Write the console, all +## ttys and all ptys. +## </summary> +## <param name="domain"> +## <summary> +## Domain allowed access. +## </summary> +## </param> +## <rolecap/> +# +interface(`term_write_all_terms',` + gen_require(` + attribute ttynode, ptynode; + type console_device_t, devpts_t, tty_device_t; + ') + + dev_list_all_dev_nodes($1) + allow $1 devpts_t:dir list_dir_perms; + allow $1 { console_device_t tty_device_t ttynode ptynode }:chr_file write_chr_file_perms; +') + +######################################## +## <summary> ## Read and write the console, all ## ttys and all ptys. ## </summary> |