2 ## <summary>policy for thumb</summary>
5 ########################################
7 ## Transition to thumb.
9 ## <param name="domain">
11 ## Domain allowed to transition.
15 interface(`thumb_domtrans',`
17 type thumb_t, thumb_exec_t;
20 corecmd_search_bin($1)
21 domtrans_pattern($1, thumb_exec_t, thumb_t)
25 ########################################
27 ## Execute thumb in the thumb domain, and
28 ## allow the specified role the thumb domain.
30 ## <param name="domain">
32 ## Domain allowed to transition
35 ## <param name="role">
37 ## The role to be allowed the thumb domain.
41 interface(`thumb_run',`
47 role $2 types thumb_t;
50 ########################################
52 ## Role access for thumb
54 ## <param name="role">
56 ## Role allowed access
59 ## <param name="domain">
61 ## User domain for the role
65 interface(`thumb_role',`
70 role $1 types thumb_t;
74 ps_process_pattern($2, thumb_t)
75 allow $2 thumb_t:process signal;