psss / rpms / selinux-policy

Forked from rpms/selinux-policy 5 years ago
Clone
Source Code
GIT

Blame iodine.if

f10 f11 f12 f13 f14 f15 f16 f17 f18 f19 f20 f21 f22 f23 f24 f25 f26 f27 f28 f29 f7 f8 f9 master master-docker master_contrib private-master-atomic-policy private-master-migrate-to-var-lib-selinux requires tests
  1.   master_contrib
  2.   iodine.if
Blob History Raw
Dominick Grift 17f21d6 
## <summary>IP over DNS tunneling daemon.</summary>
Dominick Grift 17f21d6
Dominick Grift 17f21d6 
########################################
Dominick Grift 17f21d6 
## <summary>
Dominick Grift 17f21d6 
##	All of the rules required to
Dominick Grift 17f21d6 
##	administrate an iodined environment
Dominick Grift 17f21d6 
## </summary>
Dominick Grift 17f21d6 
## <param name="domain">
Dominick Grift 17f21d6 
##	<summary>
Dominick Grift 17f21d6 
##	Domain allowed access.
Dominick Grift 17f21d6 
##	</summary>
Dominick Grift 17f21d6 
## </param>
Dominick Grift 17f21d6 
## <param name="role">
Dominick Grift 17f21d6 
##	<summary>
Dominick Grift 17f21d6 
##	Role allowed access.
Dominick Grift 17f21d6 
##	</summary>
Dominick Grift 17f21d6 
## </param>
Dominick Grift 17f21d6 
## <rolecap/>
Dominick Grift 17f21d6 
#
Dominick Grift 17f21d6 
interface(`iodined_admin',`
Dominick Grift 4af6197 
	refpolicywarn(`$0($*) has been deprecated, use iodine_admin() instead.')
Dominick Grift 4af6197 
	iodine_admin($1, $2)
Dominick Grift 4af6197 
')
Dominick Grift 4af6197
Dominick Grift 4af6197 
########################################
Dominick Grift 4af6197 
## <summary>
Dominick Grift 4af6197 
##	All of the rules required to
Dominick Grift 4af6197 
##	administrate an iodined environment
Dominick Grift 4af6197 
## </summary>
Dominick Grift 4af6197 
## <param name="domain">
Dominick Grift 4af6197 
##	<summary>
Dominick Grift 4af6197 
##	Domain allowed access.
Dominick Grift 4af6197 
##	</summary>
Dominick Grift 4af6197 
## </param>
Dominick Grift 4af6197 
## <param name="role">
Dominick Grift 4af6197 
##	<summary>
Dominick Grift 4af6197 
##	Role allowed access.
Dominick Grift 4af6197 
##	</summary>
Dominick Grift 4af6197 
## </param>
Dominick Grift 4af6197 
## <rolecap/>
Dominick Grift 4af6197 
#
Dominick Grift 4af6197 
interface(`iodine_admin',`
Dominick Grift 17f21d6 
	gen_require(`
Dominick Grift 17f21d6 
		type iodined_t, iodined_initrc_exec_t;
Dominick Grift 17f21d6 
	')
Dominick Grift 17f21d6
Dominick Grift 17f21d6 
	allow $1 iodined_t:process { ptrace signal_perms };
Dominick Grift 17f21d6 
	ps_process_pattern($1, iodined_t)
Dominick Grift 17f21d6
Dominick Grift 17f21d6 
	init_labeled_script_domtrans($1, iodined_initrc_exec_t)
Dominick Grift 17f21d6 
	domain_system_change_exemption($1)
Dominick Grift 17f21d6 
	role_transition $2 iodined_initrc_exec_t system_r;
Dominick Grift 17f21d6 
	allow $2 system_r;
Dominick Grift 17f21d6 
')
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.