nnd/selinux-refpolicy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
60a3d5af67
selinux-refpolicy/policy/modules/services/ifplugd.if
Markus Linnala 9127219358 policy: interfaces: doc: indent param blocks consistently 
There is more than 5000 parameter documentations. Only about 300 are
differently done. Change them to be consistently indented.

param with one space
and content inside with one tab

This was done with:

sed -ri '
/^##[[:space:]]*<param/,/^##[[:space:]]*<[/]param>/{
	s/^##[[:space:]]*/##\t/;
	s/^##[[:space:]]*(<[/]?summary)/##\t\1/;
	s/^##[[:space:]]*(<[/]?param)/## \1/;
}' policy/modules/*/*.if

Signed-off-by: Markus Linnala <Markus.Linnala@cybercom.com>
2021-07-02 12:19:25 +03:00

128 lines
2.5 KiB
Plaintext
Raw Blame History

## <summary>Bring up/down ethernet interfaces based on cable detection.</summary>
########################################
## <summary>
## Execute a domain transition to run ifplugd.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed to transition.
## </summary>
## </param>
#
interface(`ifplugd_domtrans',`
gen_require(`
type ifplugd_t, ifplugd_exec_t;
')
corecmd_search_bin($1)
domtrans_pattern($1, ifplugd_exec_t, ifplugd_t)
')
########################################
## <summary>
## Send generic signals to ifplugd.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`ifplugd_signal',`
gen_require(`
type ifplugd_t;
')
allow $1 ifplugd_t:process signal;
')
########################################
## <summary>
## Read ifplugd configuration files.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`ifplugd_read_config',`
gen_require(`
type ifplugd_etc_t;
')
files_search_etc($1)
read_files_pattern($1, ifplugd_etc_t, ifplugd_etc_t)
')
########################################
## <summary>
## Create, read, write, and delete
## ifplugd configuration content.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`ifplugd_manage_config',`
gen_require(`
type ifplugd_etc_t;
')
files_search_etc($1)
manage_dirs_pattern($1, ifplugd_etc_t, ifplugd_etc_t)
manage_files_pattern($1, ifplugd_etc_t, ifplugd_etc_t)
')
########################################
## <summary>
## Read ifplugd pid files. (Deprecated)
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`ifplugd_read_pid_files',`
refpolicywarn(`$0($*) has been deprecated.')
')
########################################
## <summary>
## All of the rules required to
## administrate an ifplugd environment.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
## <param name="role">
## <summary>
## Role allowed access.
## </summary>
## </param>
## <rolecap/>
#
interface(`ifplugd_admin',`
gen_require(`
type ifplugd_t, ifplugd_etc_t, ifplugd_runtime_t;
type ifplugd_initrc_exec_t;
')
allow $1 ifplugd_t:process { ptrace signal_perms };
ps_process_pattern($1, ifplugd_t)
init_startstop_service($1, $2, ifplugd_t, ifplugd_initrc_exec_t)
files_list_etc($1)
admin_pattern($1, ifplugd_etc_t)
files_list_runtime($1)
admin_pattern($1, ifplugd_runtime_t)
')
Reference in New Issue View Git Blame Copy Permalink