selinux-refpolicy/policy/modules/services/oav.if

48 lines
987 B
Plaintext
Raw Normal View History

## <summary>Open AntiVirus scannerdaemon and signature update.</summary>
########################################
## <summary>
## Execute oav_update in the oav_update domain.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed to transition.
## </summary>
## </param>
#
interface(`oav_domtrans_update',`
gen_require(`
type oav_update_t, oav_update_exec_t;
')
corecmd_search_bin($1)
domtrans_pattern($1, oav_update_exec_t, oav_update_t)
')
########################################
## <summary>
## Execute oav_update in the oav update
## domain, and allow the specified role
## the oav_update domain.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed to transition.
## </summary>
## </param>
## <param name="role">
## <summary>
## Role allowed access.
## </summary>
## </param>
## <rolecap/>
#
interface(`oav_run_update',`
gen_require(`
attribute_role oav_update_roles;
')
oav_domtrans_update($1)
roleattribute $2 oav_update_roles;
')