]> git.ipfire.org Git - people/stevee/selinux-policy.git/blob - policy/modules/services/ucspitcp.if
projects / people / stevee / selinux-policy.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge upstream
[people/stevee/selinux-policy.git] / policy / modules / services / ucspitcp.if
1 ## <summary>ucspitcp policy</summary>
2 ## <desc>
3 ## <p>
4 ## Policy for DJB's ucspi-tcpd
5 ## </p>
6 ## </desc>
7
8 ########################################
9 ## <summary>
10 ## Define a specified domain as a ucspitcp service.
11 ## </summary>
12 ## <param name="domain">
13 ## <summary>
14 ## Domain allowed access.
15 ## </summary>
16 ## </param>
17 ## <param name="entrypoint">
18 ## <summary>
19 ## The type associated with the process program.
20 ## </summary>
21 ## </param>
22 #
23 interface(`ucspitcp_service_domain',`
24 gen_require(`
25 type ucspitcp_t;
26 role system_r;
27 ')
28
29 domain_type($1)
30 domain_entry_file($1, $2)
31
32 role system_r types $1;
33
34 domtrans_pattern(ucspitcp_t, $2, $1)
35 ')
The IPFire selinux policy.