nnd/selinux-refpolicy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
60a3d5af67
selinux-refpolicy/policy/modules/services/memcached.if
Markus Linnala 9127219358 policy: interfaces: doc: indent param blocks consistently 
There is more than 5000 parameter documentations. Only about 300 are
differently done. Change them to be consistently indented.

param with one space
and content inside with one tab

This was done with:

sed -ri '
/^##[[:space:]]*<param/,/^##[[:space:]]*<[/]param>/{
	s/^##[[:space:]]*/##\t/;
	s/^##[[:space:]]*(<[/]?summary)/##\t\1/;
	s/^##[[:space:]]*(<[/]?param)/## \1/;
}' policy/modules/*/*.if

Signed-off-by: Markus Linnala <Markus.Linnala@cybercom.com>
2021-07-02 12:19:25 +03:00

142 lines
3.0 KiB
Plaintext
Raw Blame History

## <summary>High-performance memory object caching system.</summary>
########################################
## <summary>
## Execute a domain transition to run memcached.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed to transition.
## </summary>
## </param>
#
interface(`memcached_domtrans',`
gen_require(`
type memcached_t,memcached_exec_t;
')
corecmd_search_bin($1)
domtrans_pattern($1, memcached_exec_t, memcached_t)
')
########################################
## <summary>
## Create, read, write, and delete
## memcached pid files. (Deprecated)
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`memcached_manage_pid_files',`
refpolicywarn(`$0($*) has been deprecated, please use memcached_manage_runtime_files() instead.')
memcached_manage_runtime_files($1)
')
########################################
## <summary>
## Read memcached pid files. (Deprecated)
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`memcached_read_pid_files',`
refpolicywarn(`$0($*) has been deprecated.')
')
########################################
## <summary>
## Create, read, write, and delete
## memcached runtime files.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`memcached_manage_runtime_files',`
gen_require(`
type memcached_runtime_t;
')
files_search_runtime($1)
manage_files_pattern($1, memcached_runtime_t, memcached_runtime_t)
')
########################################
## <summary>
## Connect to memcached using a unix
## domain stream socket.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`memcached_stream_connect',`
gen_require(`
type memcached_t, memcached_runtime_t;
')
files_search_runtime($1)
stream_connect_pattern($1, memcached_runtime_t, memcached_runtime_t, memcached_t)
')
########################################
## <summary>
## Connect to memcache over the network.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`memcached_tcp_connect',`
gen_require(`
type memcached_t;
')
corenet_sendrecv_memcache_client_packets($1)
corenet_tcp_connect_memcache_port($1)
corenet_tcp_recvfrom_labeled($1, memcached_t)
')
########################################
## <summary>
## All of the rules required to
## administrate an memcached environment.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
## <param name="role">
## <summary>
## Role allowed access.
## </summary>
## </param>
## <rolecap/>
#
interface(`memcached_admin',`
gen_require(`
type memcached_t, memcached_initrc_exec_t, memcached_runtime_t;
')
allow $1 memcached_t:process { ptrace signal_perms };
ps_process_pattern($1, memcached_t)
init_startstop_service($1, $2, memcached_t, memcached_initrc_exec_t)
files_search_runtime($1)
admin_pattern($1, memcached_runtime_t)
')
Reference in New Issue View Git Blame Copy Permalink