## Tool to manage Bluetooth devices. ######################################## ## ## Execute blueman in the blueman domain. ## ## ## ## Domain allowed to transition. ## ## # interface(`blueman_domtrans',` gen_require(` type blueman_t, blueman_exec_t; ') corecmd_search_bin($1) domtrans_pattern($1, blueman_exec_t, blueman_t) ') ######################################## ## ## Send and receive messages from ## blueman over dbus. ## ## ## ## Domain allowed access. ## ## # interface(`blueman_dbus_chat',` gen_require(` type blueman_t; class dbus send_msg; ') allow $1 blueman_t:dbus send_msg; allow blueman_t $1:dbus send_msg; ps_process_pattern(blueman_t, $1) ') ######################################## ## ## Search blueman lib directories. ## ## ## ## Domain allowed access. ## ## # interface(`blueman_search_lib',` gen_require(` type blueman_var_lib_t; ') allow $1 blueman_var_lib_t:dir search_dir_perms; files_search_var_lib($1) ') ######################################## ## ## Read blueman lib files. ## ## ## ## Domain allowed access. ## ## # interface(`blueman_read_lib_files',` gen_require(` type blueman_var_lib_t; ') files_search_var_lib($1) read_files_pattern($1, blueman_var_lib_t, blueman_var_lib_t) ') ######################################## ## ## Create, read, write, and delete ## blueman lib files. ## ## ## ## Domain allowed access. ## ## # interface(`blueman_manage_lib_files',` gen_require(` type blueman_var_lib_t; ') files_search_var_lib($1) manage_files_pattern($1, blueman_var_lib_t, blueman_var_lib_t) ')