PERFORCE change 22981 for review

Brian Feldman green at freebsd.org
Tue Dec 31 16:47:59 GMT 2002 

http://perforce.freebsd.org/chv.cgi?CH=22981

Change 22981 by green at green_laptop_2 on 2002/12/31 08:47:36

	* consolectl_t should not exist; /dev/consolectl is really just
	  "syscons(4)'s /dev/console" and as such should have the same
	  label.
	* /dev/ttyv* should have tty_device_t labels, not the same label
	  as /dev/tty has.

Affected files ...

.. //depot/projects/trustedbsd/mac/contrib/sebsd/policy/domains/program/moused.te#2 edit
.. //depot/projects/trustedbsd/mac/contrib/sebsd/policy/genfs_contexts#5 edit

Differences ...

==== //depot/projects/trustedbsd/mac/contrib/sebsd/policy/domains/program/moused.te#2 (text+ko) ====

@@ -8,7 +8,7 @@
 #
 # moused_t is the domain of the console mouse server.
 # moused_exec_t is the type of the console mouse server program.
-# consolectl_t is the type of the pseudo-mouse device that the
+# sysmouse_device_t is the type of the pseudo-mouse device that the
 # console mouse server controls.
 #
 type moused_t, domain, privlog;
@@ -16,13 +16,12 @@
 every_domain(moused_t)
 type moused_exec_t, file_type, sysadmfile, exec_type;
 domain_auto_trans(initrc_t, moused_exec_t, moused_t)
-type consolectl_t, file_type;
 
 type moused_var_run_t, file_type, sysadmfile, pidfile;
 file_type_auto_trans(moused_t, var_run_t, moused_var_run_t)
 
-# Access consolectl and sysmouse.
-allow moused_t consolectl_t:chr_file rw_file_perms;
+# Access /dev/console{,ctl} and sysmouse.
+allow moused_t console_device_t:chr_file rw_file_perms;
 allow moused_t sysmouse_device_t:chr_file rw_file_perms;
 
 # Access the mouse.

==== //depot/projects/trustedbsd/mac/contrib/sebsd/policy/genfs_contexts#5 (text+ko) ====

@@ -44,6 +44,7 @@
 genfscon devfs /random		system_u:object_r:random_device_t
 genfscon devfs /urandom		system_u:object_r:random_device_t
 genfscon devfs /tty			system_u:object_r:devtty_t
+genfscon devfs /ttyv			system_u:object_r:tty_device_t
 genfscon devfs /pty			system_u:object_r:devpts_t
 genfscon devfs /ttyp			system_u:object_r:devpts_t
 genfscon devfs /ttyq			system_u:object_r:devpts_t
@@ -69,7 +70,6 @@
 genfscon devfs /psm			system_u:object_r:mouse_device_t
 genfscon devfs /ums			system_u:object_r:mouse_device_t
 genfscon devfs /sysmouse		system_u:object_r:sysmouse_device_t
-genfscon devfs /consolectl		system_u:object_r:consolectl_t
 genfscon devfs /gpmctl		system_u:object_r:gpmctl_t
 genfscon devfs /ptmx			system_u:object_r:ptmx_t
 genfscon devfs /acpi			system_u:object_r:apm_bios_t
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-cvs" in the body of the message

More information about the trustedbsd-cvs mailing list