Rearrange files interfaces.
This commit is contained in:
Chris PeBenito
parent
d981fce3e1
commit
6f1dfe762a
@ -6190,27 +6190,6 @@ interface(`files_dontaudit_getattr_all_pids',`
|
||||
dontaudit $1 pidfile:file getattr;
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Create, read, write and delete all
|
||||
## var_run (pid) content
|
||||
## </summary>
|
||||
## <param name="domain">
|
||||
## <summary>
|
||||
## Domain alloed access.
|
||||
## </summary>
|
||||
## </param>
|
||||
#
|
||||
interface(`files_manage_all_pids',`
|
||||
gen_require(`
|
||||
attribute pidfile;
|
||||
')
|
||||
|
||||
manage_dirs_pattern($1, pidfile, pidfile)
|
||||
manage_files_pattern($1, pidfile, pidfile)
|
||||
manage_lnk_files_pattern($1, pidfile, pidfile)
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Do not audit attempts to write to daemon runtime data files.
|
||||
@ -6272,25 +6251,6 @@ interface(`files_read_all_pids',`
|
||||
read_files_pattern($1, pidfile, pidfile)
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Mount filesystems on all polyinstantiation
|
||||
## member directories.
|
||||
## </summary>
|
||||
## <param name="domain">
|
||||
## <summary>
|
||||
## Domain allowed access.
|
||||
## </summary>
|
||||
## </param>
|
||||
#
|
||||
interface(`files_mounton_all_poly_members',`
|
||||
gen_require(`
|
||||
attribute polymember;
|
||||
')
|
||||
|
||||
allow $1 polymember:dir mounton;
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Delete all process IDs.
|
||||
@ -6338,6 +6298,46 @@ interface(`files_delete_all_pid_dirs',`
|
||||
delete_dirs_pattern($1, pidfile, pidfile)
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Create, read, write and delete all
|
||||
## var_run (pid) content
|
||||
## </summary>
|
||||
## <param name="domain">
|
||||
## <summary>
|
||||
## Domain alloed access.
|
||||
## </summary>
|
||||
## </param>
|
||||
#
|
||||
interface(`files_manage_all_pids',`
|
||||
gen_require(`
|
||||
attribute pidfile;
|
||||
')
|
||||
|
||||
manage_dirs_pattern($1, pidfile, pidfile)
|
||||
manage_files_pattern($1, pidfile, pidfile)
|
||||
manage_lnk_files_pattern($1, pidfile, pidfile)
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Mount filesystems on all polyinstantiation
|
||||
## member directories.
|
||||
## </summary>
|
||||
## <param name="domain">
|
||||
## <summary>
|
||||
## Domain allowed access.
|
||||
## </summary>
|
||||
## </param>
|
||||
#
|
||||
interface(`files_mounton_all_poly_members',`
|
||||
gen_require(`
|
||||
attribute polymember;
|
||||
')
|
||||
|
||||
allow $1 polymember:dir mounton;
|
||||
')
|
||||
|
||||
########################################
|
||||
## <summary>
|
||||
## Search the contents of generic spool
|
||||
|
||||
Loading…
Reference in New Issue
Block a user