Move raid_run_mdadm() interface.

2025-03-11 07:40:18 +00:00 · 2011-05-04 09:07:54 -04:00 · 2011-05-04 09:07:54 -04:00 · c3a60ead61
commit c3a60ead61
parent ffc0b4f058
1 changed files with 26 additions and 26 deletions
--- a/policy/modules/system/raid.if
+++ b/policy/modules/system/raid.if
@ -19,6 +19,32 @@ interface(`raid_domtrans_mdadm',`
 	domtrans_pattern($1, mdadm_exec_t, mdadm_t)
 ')

+######################################
+## <summary>
+##	Execute a domain transition to mdadm_t for the
+##	specified role, allowing it to use the mdadm_t
+##	domain
+## </summary>
+## <param name="role">
+##	<summary>
+##	Role allowed to access mdadm_t domain
+##	</summary>
+## </param>
+## <param name="domain">
+##	<summary>
+##	Domain allowed to transition to mdadm_t
+##	</summary>
+## </param>
+#
+interface(`raid_run_mdadm',`
+	gen_require(`
+		type mdadm_t;
+	')
+
+	role $1 types mdadm_t;
+	raid_domtrans_mdadm($2)
+')
+
 ########################################
 ## <summary>
 ##	Create, read, write, and delete the mdadm pid files.
@ -47,29 +73,3 @@ interface(`raid_manage_mdadm_pid',`
 	# mdadm policy
 	allow $1 mdadm_var_run_t:file manage_file_perms;
 ')
-
-######################################
-## <summary>
-##	Execute a domain transition to mdadm_t for the
-##	specified role, allowing it to use the mdadm_t
-##	domain
-## </summary>
-## <param name="role">
-##	<summary>
-##	Role allowed to access mdadm_t domain
-##	</summary>
-## </param>
-## <param name="domain">
-##	<summary>
-##	Domain allowed to transition to mdadm_t
-##	</summary>
-## </param>
-#
-interface(`raid_run_mdadm',`
-	gen_require(`
-		type mdadm_t;
-	')
-
-	role $1 types mdadm_t;
-	raid_domtrans_mdadm($2)
-')