summaryrefslogtreecommitdiffstats
path: root/selinux/gpsd.te
blob: a65f3da9b03fb46211c257da1a4a9977497f6ede (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
type glgps, domain;
type glgps_exec, exec_type, file_type;

init_daemon_domain(glgps)

allow glgps shell_exec:file { rx_file_perms entrypoint };

#for text relocs & execution
allow glgps system_file:file { execute_no_trans execmod };
allow glgps gps_device:chr_file { getattr setattr };
allow glgps gps_data_file:dir { search write add_name remove_name };
allow glgps gps_data_file:file { create rw_file_perms };
allow glgps gps_data_file:fifo_file { unlink create setattr getattr rw_file_perms };

allow glgps node:udp_socket { node_bind name_bind };

allow glgps sysfs:file { setattr write };
allow glgps gps_device:chr_file { ioctl open read write };
allow glgps glgps:udp_socket { create bind };
allow glgps dnsproxyd_socket:sock_file write;
allow glgps netd:unix_stream_socket connectto;