| Jeff Vander Stoep | 564e292 | 2019-05-02 13:48:44 -0700 | [diff] [blame] | 1 | (typeattribute vendordomain) |
| 2 | (typeattributeset vendordomain ((and (domain) ((not (coredomain)))))) |
| 3 | (allowx vendordomain dev_type (ioctl blk_file ((range 0x0000 0xffff)))) |
| 4 | (allowx vendordomain file_type (ioctl file ((range 0x0000 0xffff)))) |
| Jeff Vander Stoep | fb69c8e | 2019-10-16 15:19:40 +0200 | [diff] [blame] | 5 | (allow vendordomain self (netlink_route_socket (nlmsg_readpriv))) |
| Alan Stokes | 8bf8a26 | 2020-11-16 18:10:33 +0000 | [diff] [blame] | 6 | |
| 7 | (typeattributeset mlsvendorcompat (and appdomain vendordomain)) |
| 8 | (allow mlsvendorcompat app_data_file (dir (ioctl read write create getattr setattr lock rename open watch watch_reads add_name remove_name reparent search rmdir))) |
| 9 | (allow mlsvendorcompat app_data_file (file (ioctl read write create getattr setattr lock append map unlink rename open watch watch_reads))) |
| 10 | (allow mlsvendorcompat privapp_data_file (dir (ioctl read write create getattr setattr lock rename open watch watch_reads add_name remove_name reparent search rmdir))) |
| 11 | (allow mlsvendorcompat privapp_data_file (file (ioctl read write create getattr setattr lock append map unlink rename open watch watch_reads))) |