## Fortinet compatible SSL VPN daemons.
########################################
##
## Transition to openfortivpn.
##
##
##
## Domain allowed to transition.
##
##
#
interface(`openfortivpn_domtrans',`
gen_require(`
type openfortivpn_t, openfortivpn_exec_t;
')
corecmd_search_bin($1)
domtrans_pattern($1, openfortivpn_exec_t, openfortivpn_t)
')
########################################
##
## Allow send a signal to openfortivpn.
##
##
##
## Domain allowed access.
##
##
#
interface(`openfortivpn_signal',`
gen_require(`
type openfortivpn_t;
')
allow $1 openfortivpn_t:process signal;
')
########################################
##
## Allow send signull to openfortivpn.
##
##
##
## Domain allowed access.
##
##
#
interface(`openfortivpn_signull',`
gen_require(`
type openfortivpn_t;
')
allow $1 openfortivpn_t:process signull;
')
########################################
##
## Allow send sigkill to openfortivpn.
##
##
##
## Domain allowed access.
##
##
#
interface(`openfortivpn_sigkill',`
gen_require(`
type openfortivpn_t;
')
allow $1 openfortivpn_t:process sigkill;
')
########################################
##
## Send and receive messages from
## openfortivpn over dbus.
##
##
##
## Domain allowed access.
##
##
#
interface(`openfortivpn_dbus_chat',`
gen_require(`
type openfortivpn_t;
class dbus send_msg;
')
allow $1 openfortivpn_t:dbus send_msg;
allow openfortivpn_t $1:dbus send_msg;
')
########################################
##
## Read from and write to the openfortivpn devpts.
##
##
##
## Domain allowed access.
##
##
#
interface(`openfortivpn_use_ptys',`
gen_require(`
type openfortivpn_devpts_t;
')
allow $1 openfortivpn_devpts_t:chr_file rw_term_perms;
')