Various games.

######################################## ##

## Role access for games. ##

## ##

## Role allowed access. ##

## ## ##

## User domain for the role. ##

## # interface(`games_role',` gen_require(` attribute_role games_roles; type games_t, games_exec_t, games_tmp_t; type games_tmpfs_t; ') roleattribute $1 games_roles; domtrans_pattern($2, games_exec_t, games_t) allow $2 games_tmp_t:dir { manage_dir_perms relabel_dir_perms }; allow $2 { games_tmp_t games_tmpfs_t }:file { manage_file_perms relabel_file_perms }; allow $2 games_tmpfs_t:fifo_file { manage_fifo_file_perms relabel_fifo_file_perms }; allow $2 games_tmpfs_t:sock_file { manage_sock_file_perms relabel_sock_file_perms }; allow $2 games_t:process { ptrace signal_perms }; ps_process_pattern($2, games_t) stream_connect_pattern($2, games_tmpfs_t, games_tmpfs_t, games_t) allow games_t $2:unix_stream_socket connectto; ') ######################################## ##

## Read and write games data files. ## games data. ##

## ##

## Domain allowed access. ##

## # interface(`games_rw_data',` gen_require(` type games_data_t; ') files_search_var_lib($1) rw_files_pattern($1, games_data_t, games_data_t) ') ######################################## ##

## Manage games data files. ## games data. ##

## ##

## Domain allowed access. ##

## # interface(`games_manage_data_files',` gen_require(` type games_data_t; ') files_search_var_lib($1) manage_files_pattern($1, games_data_t, games_data_t) ')