## Tgtd shared policy module.
########################################
##
## Allowed to read target configuration files
##
##
##
## Read the tgtd conf files
##
##
##
##
## Type of domain allowed access
##
##
#
interface(`tgtd_read_config_files',`
gen_require(`
type tgtd_etc_t;
')
read_files_pattern($1, tgtd_etc_t, tgtd_etc_t)
')
########################################
##
## Allowed to write target configuration files
##
##
##
## Read and write the tgtd conf files
##
##
##
##
## Type of domain allowed access
##
##
#
interface(`tgtd_rw_config_files',`
gen_require(`
type tgtd_etc_t;
')
manage_files_pattern($1, tgtd_etc_t, tgtd_etc_t)
manage_dirs_pattern($1, tgtd_etc_t, tgtd_etc_t)
filetrans_pattern($1, tgtd_etc_t, tgtd_etc_t, { dir file} )
')
##
## Allowed to read var_lib files
##
##
##
## Read the tgtd var_lib files
##
##
##
##
## Type of domain allowed access
##
##
#
interface(`tgtd_read_var_lib_files',`
gen_require(`
type tgtd_var_lib_t;
')
files_search_var_lib($1)
read_files_pattern($1, tgtd_var_lib_t, tgtd_var_lib_t)
')
########################################
##
## Allowed to manage tgtd var lib files
##
##
##
## Read and write the tgtd var lib files
##
##
##
##
## Type of domain allowed access
##
##
#
interface(`tgtd_manage_var_lib',`
gen_require(`
type tgtd_var_lib_t;
')
files_search_var_lib($1)
manage_files_pattern($1, tgtd_var_lib_t, tgtd_var_lib_t)
manage_dirs_pattern($1, tgtd_var_lib_t, tgtd_var_lib_t)
manage_sock_files_pattern($1, tgtd_var_lib_t, tgtd_var_lib_t)
')
########################################
##
## Allowed to domain to connecto to tgtd
##
##
##
## Connect to target daemon
##
##
##
##
## Type of domain allowed access
##
##
#
interface(`tgtd_stream_connect',`
gen_require(`
type tgtd_t, tgtd_var_lib_t;
')
stream_connect_pattern($1, tgtd_var_lib_t, tgtd_var_lib_t, tgtd_t)
')