policy/modules/kernel/terminal.te

   1 policy_module(terminal, 1.9.2)
   2
   3 ########################################
   4 #
   5 # Declarations
   6 #
   7 attribute ttynode;
   8 attribute ptynode;
   9 attribute server_ptynode;
  10 attribute serial_device;
  11
  12 #
  13 # bsdpty_device_t is the type of /dev/[tp]ty[abcdepqrstuvwxyz][0-9a-f]
  14 type bsdpty_device_t;
  15 dev_node(bsdpty_device_t)
  16
  17 #
  18 # console_device_t is the type of /dev/console.
  19 #
  20 type console_device_t;
  21 dev_node(console_device_t)
  22
  23 #
  24 # devpts_t is the type of the devpts file system and
  25 # the type of the root directory of the file system.
  26 #
  27 type devpts_t;
  28 files_mountpoint(devpts_t)
  29 fs_associate_tmpfs(devpts_t)
  30 fs_type(devpts_t)
  31 fs_use_trans devpts gen_context(system_u:object_r:devpts_t,s0);
  32 dev_associate(devpts_t)
  33
  34 #
  35 # devtty_t is the type of /dev/tty.
  36 #
  37 type devtty_t;
  38 dev_node(devtty_t)
  39 mls_trusted_object(devtty_t)
  40
  41 #
  42 # ptmx_t is the type for /dev/ptmx.
  43 #
  44 type ptmx_t;
  45 dev_node(ptmx_t)
  46 mls_trusted_object(ptmx_t)
  47 allow ptmx_t devpts_t:filesystem associate;
  48
  49 #
  50 # tty_device_t is the type of /dev/*tty*
  51 #
  52 type tty_device_t, serial_device;
  53 dev_node(tty_device_t)
  54
  55 #
  56 # usbtty_device_t is the type of /dev/usr/tty*
  57 #
  58 type usbtty_device_t, serial_device;
  59 dev_node(usbtty_device_t)
  60
  61 #
  62 # virtio_device_t is the type of /dev/vport[0-9]p[0-9]
  63 #
  64 type virtio_device_t, serial_device;
  65 dev_node(virtio_device_t)