term_write_all_terms() patch from Stefan Schulze Frielinghaus

author: Chris PeBenito <cpebenito@tresys.com> 2009-09-08 10:06:38 -0400
committer: Chris PeBenito <cpebenito@tresys.com> 2009-09-08 10:06:38 -0400
commit: f67bc918d441699e199fcfaf54f16529111dc877 (patch)
tree: d2aa33329da67b8dd570d11f6910b706d92bc459
parent: dbed95369cf3e387abe8d43bf632093e64d80d37 (diff)
1 files changed, 23 insertions, 0 deletions
diff --git a/policy/modules/kernel/terminal.if b/policy/modules/kernel/terminal.if
index 38b493a7..f89eaba0 100644
--- a/policy/modules/kernel/terminal.if
+++ b/policy/modules/kernel/terminal.if
@@ -155,6 +155,29 @@ interface(`term_create_pty',`
 
 ########################################
 ## <summary>
+##	Write the console, all
+##	ttys and all ptys.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+## <rolecap/>
+#
+interface(`term_write_all_terms',`
+	gen_require(`
+		attribute ttynode, ptynode;
+		type console_device_t, devpts_t, tty_device_t;
+	')
+
+	dev_list_all_dev_nodes($1)
+	allow $1 devpts_t:dir list_dir_perms;
+	allow $1 { console_device_t tty_device_t ttynode ptynode }:chr_file write_chr_file_perms;
+')
+
+########################################
+## <summary>
 ##	Read and write the console, all
 ##	ttys and all ptys.
 ## </summary>
author	Chris PeBenito <cpebenito@tresys.com>	2009-09-08 10:06:38 -0400
committer	Chris PeBenito <cpebenito@tresys.com>	2009-09-08 10:06:38 -0400
commit	f67bc918d441699e199fcfaf54f16529111dc877 (patch)
tree	d2aa33329da67b8dd570d11f6910b706d92bc459
parent	dbed95369cf3e387abe8d43bf632093e64d80d37 (diff)