commit: ff1afbaf2e0f1d8fd0b381167d735606024f29bc Author: Luis Ressel <aranea <AT> aixah <DOT> de> AuthorDate: Mon Aug 11 13:33:17 2014 +0000 Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org> CommitDate: Tue Aug 19 20:06:45 2014 +0000 URL: http://sources.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=ff1afbaf
system/fstools.if: Add fstools_use_fds interface --- policy/modules/system/fstools.if | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) diff --git a/policy/modules/system/fstools.if b/policy/modules/system/fstools.if index 016a770..c4bbd88 100644 --- a/policy/modules/system/fstools.if +++ b/policy/modules/system/fstools.if @@ -83,6 +83,24 @@ interface(`fstools_signal',` ######################################## ## <summary> +## Inherit fstools file descriptors. +## </summary> +## <param name="domain"> +## <summary> +## The type of the process performing this action. +## </summary> +## </param> +# +interface(`fstools_use_fds',` + gen_require(` + type fsadm_t; + ') + + allow $1 fsadm_t:fd use; +') + +######################################## +## <summary> ## Read fstools unnamed pipes. ## </summary> ## <param name="domain">
