1 ## <summary>Bluetooth tools and system services.</summary>
3 ########################################
5 ## Execute bluetooth in the bluetooth domain.
7 ## <param name="domain">
9 ## The type of the process performing this action.
13 interface(`bluetooth_domtrans',`
15 type bluetooth_t, bluetooth_exec_t;
18 domain_auto_trans($1,bluetooth_exec_t,bluetooth_t)
19 allow bluetooth_t $1:fd use;
20 allow bluetooth_t $1:fifo_file rw_file_perms;
21 allow bluetooth_t $1:process sigchld;
24 ########################################
26 ## Read bluetooth daemon configuration.
28 ## <param name="domain">
30 ## Domain allowed access.
34 interface(`bluetooth_read_config',`
36 type bluetooth_conf_t;
39 allow $1 bluetooth_conf_t:file { getattr read ioctl };
42 ########################################
44 ## Execute bluetooth_helper in the bluetooth_helper domain.
46 ## <param name="domain">
48 ## The type of the process performing this action.
52 interface(`bluetooth_domtrans_helper',`
54 type bluetooth_helper_t, bluetooth_helper_exec_t;
57 domain_auto_trans($1,bluetooth_helper_exec_t,bluetooth_helper_t)
59 allow $1 bluetooth_helper_t:fd use;
60 allow bluetooth_helper_t $1:fd use;
61 allow bluetooth_helper_t $1:fifo_file rw_file_perms;
62 allow bluetooth_helper_t $1:process sigchld;
65 ########################################
67 ## Send and receive messages from
68 ## bluetooth over dbus.
70 ## <param name="domain">
72 ## Domain allowed access.
76 interface(`bluetooth_dbus_chat',`
82 allow $1 bluetooth_t:dbus send_msg;
83 allow bluetooth_t $1:dbus send_msg;
86 ########################################
88 ## Execute bluetooth_helper in the bluetooth_helper domain, and
89 ## allow the specified role the bluetooth_helper domain.
91 ## <param name="domain">
93 ## The type of the process performing this action.
96 ## <param name="role">
98 ## The role to be allowed the bluetooth_helper domain.
101 ## <param name="terminal">
103 ## The type of the terminal allow the bluetooth_helper domain to use.
108 interface(`bluetooth_run_helper',`
110 type bluetooth_helper_t;
113 bluetooth_domtrans_helper($1)
114 role $2 types bluetooth_helper_t;
115 allow bluetooth_helper_t $3:chr_file rw_term_perms;
118 ########################################
120 ## Read bluetooth helper files.
122 ## <param name="domain">
124 ## Domain allowed access.
128 interface(`bluetooth_dontaudit_read_helper_files',`
130 type bluetooth_helper_t;
133 dontaudit $1 bluetooth_helper_t:dir search;
134 dontaudit $1 bluetooth_helper_t:file { read getattr };