split dev_create_cardmgr_dev() into a create and a filetrans interface.

2025-02-14 18:47:00 +00:00 · 2009-08-25 09:56:56 -04:00 · 2009-08-25 09:56:56 -04:00 · e27827b86c
commit e27827b86c
parent dbb7dd9484
3 changed files with 27 additions and 8 deletions
--- a/policy/modules/kernel/devices.if
+++ b/policy/modules/kernel/devices.if
@ -1208,6 +1208,27 @@ interface(`dev_dontaudit_rw_cardmgr',`
 	dontaudit $1 cardmgr_dev_t:chr_file { read write };
 ')

+########################################
+## <summary>
+##	Create, read, write, and delete
+##	the PCMCIA card manager device
+##	with the correct type.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+#
+interface(`dev_create_cardmgr_dev',`
+	gen_require(`
+		type device_t, cardmgr_dev_t;
+	')
+
+	create_chr_files_pattern($1, device_t, cardmgr_dev_t)
+	create_blk_files_pattern($1, device_t, cardmgr_dev_t)
+')
+
 ########################################
 ## <summary>
 ##	Create, read, write, and delete
@ -1230,9 +1251,9 @@ interface(`dev_manage_cardmgr_dev',`

 ########################################
 ## <summary>
-##	Create, read, write, and delete
-##	the PCMCIA card manager device
-##	with the correct type.
+##	Automatic type transition to the type
+##	for PCMCIA card manager device nodes when
+##	created in /dev.
 ## </summary>
 ## <param name="domain">
 ##	<summary>
@ -1240,13 +1261,11 @@ interface(`dev_manage_cardmgr_dev',`
 ##	</summary>
 ## </param>
 #
-interface(`dev_create_cardmgr_dev',`
+interface(`dev_filetrans_cardmgr',`
 	gen_require(`
 		type device_t, cardmgr_dev_t;
 	')

-	create_chr_files_pattern($1, device_t, cardmgr_dev_t)
-	create_blk_files_pattern($1, device_t, cardmgr_dev_t)
 	filetrans_pattern($1, device_t, cardmgr_dev_t, { chr_file blk_file })
 ')

--- a/policy/modules/kernel/devices.te
+++ b/policy/modules/kernel/devices.te
@ -1,5 +1,5 @@

-policy_module(devices, 1.8.1)
+policy_module(devices, 1.8.2)

 ########################################
 #
--- a/policy/modules/system/pcmcia.te
+++ b/policy/modules/system/pcmcia.te
@ -55,7 +55,7 @@ corecmd_exec_all_executables(cardmgr_t)

 dev_read_sysfs(cardmgr_t)
 dev_manage_cardmgr_dev(cardmgr_t)
-dev_create_cardmgr_dev(cardmgr_t)
+dev_filetrans_cardmgr(cardmgr_t)
 dev_getattr_all_chr_files(cardmgr_t)
 dev_getattr_all_blk_files(cardmgr_t)
 # for SSP