## Digital Certificate Tracking ######################################## ## ## Domain transition to certwatch. ## ## ## ## Domain allowed access. ## ## # interface(`certwatch_domtrans',` gen_require(` type certwatch_exec_t, certwatch_t; ') files_search_usr($1) corecmd_search_bin($1) domtrans_pattern($1, certwatch_exec_t, certwatch_t) ') ######################################## ## ## Execute certwatch in the certwatch domain, and ## allow the specified role the certwatch domain, ## and use the caller's terminal. Has a sigchld ## backchannel. ## ## ## ## Domain allowed access. ## ## ## ## ## Role allowed access. ## ## ## # interface(`certwatch_run',` gen_require(` type certwatch_t; ') certwatch_domtrans($1) role $2 types certwatch_t; ') ######################################## ## ## Execute certwatch in the certwatch domain, and ## allow the specified role the certwatch domain, ## and use the caller's terminal. Has a sigchld ## backchannel. (Deprecated) ## ## ## ## Domain allowed access. ## ## ## ## ## Role allowed access. ## ## ## ## ## The type of the terminal allow the certwatch domain to use. ## ## ## # interface(`certwatach_run',` refpolicywarn(`$0($*) has been deprecated, please use certwatch_run() instead.') certwatch_run($*) ')