Blob Blame History Raw
## <summary>policy for vsomeip</summary>

interface(`vsomeip_use',`
        gen_require(`
		type vsomeip_t;
                type vsomeip_var_run_t;
                type router_vsomeip_var_run_t;
        ')
        # create and use vsomeip sockets:
        allow $1 vsomeip_var_run_t:dir { add_name remove_name write };
        allow $1 vsomeip_var_run_t:sock_file { create setattr write unlink };

        # Talk to routing manager (and back)
        allow $1 vsomeip_t:unix_stream_socket connectto;
        allow vsomeip_t $1:unix_stream_socket connectto;
        allow $1 router_vsomeip_var_run_t:sock_file write;
')

interface(`vsomeip_talk_to',`
        allow $1 $2:unix_stream_socket connectto;
')