mirror of
https://gitlab.freedesktop.org/dbus/dbus.git
synced 2025-12-22 00:50:09 +01:00
736fa825e1
* bus/selinux.h: Add bus_selinux_enabled. * bus/selinux.c (bus_selinux_enabled): Implement it. * bus/config-parser.c (struct include): Add if_selinux_enabled member. (start_busconfig_child): Parse if_selinux_enabled attribute for include. (bus_config_parser_content): Handle it. * bus/session.conf.in, bus/system.conf.in: Add inclusion of context mapping to default config files; conditional on SELinux being enabled. * doc/busconfig.dtd: Add to if_selinux_enabled to default DTD. * test/data/invalid-config-files/badselinux-1.conf, test/data/invalid-config-files/badselinux-2.conf: Test files for bad syntax.
61 lines
1.6 KiB
DTD
61 lines
1.6 KiB
DTD
<!ELEMENT busconfig (user |
|
|
type |
|
|
fork |
|
|
listen |
|
|
pidfile |
|
|
includedir |
|
|
servicedir |
|
|
auth |
|
|
include |
|
|
policy |
|
|
limit |
|
|
selinux)*>
|
|
|
|
<!ELEMENT user (#PCDATA)>
|
|
<!ELEMENT listen (#PCDATA)>
|
|
<!ELEMENT includedir (#PCDATA)>
|
|
<!ELEMENT servicedir (#PCDATA)>
|
|
<!ELEMENT auth (#PCDATA)>
|
|
<!ELEMENT type (#PCDATA)>
|
|
<!ELEMENT pidfile (#PCDATA)>
|
|
<!ELEMENT fork EMPTY>
|
|
|
|
<!ELEMENT include (#PCDATA)>
|
|
<!ATTLIST include
|
|
ignore_missing (yes|no) "no"
|
|
if_selinux_enabled (yes|no) "no"
|
|
selinux_root_relative (yes|no) "no">
|
|
|
|
<!ELEMENT policy (allow|deny)*>
|
|
<!ATTLIST policy
|
|
context (default|mandatory) #IMPLIED
|
|
user CDATA #IMPLIED
|
|
group CDATA #IMPLIED
|
|
at_console (yes|no) #IMPLIED>
|
|
|
|
<!ELEMENT allow EMPTY>
|
|
<!ATTLIST allow
|
|
user CDATA #IMPLIED
|
|
send CDATA #IMPLIED
|
|
receive CDATA #IMPLIED
|
|
own CDATA #IMPLIED
|
|
send_to CDATA #IMPLIED
|
|
receive_from CDATA #IMPLIED>
|
|
|
|
<!ELEMENT deny EMPTY>
|
|
<!ATTLIST deny
|
|
user CDATA #IMPLIED
|
|
send CDATA #IMPLIED
|
|
receive CDATA #IMPLIED
|
|
own CDATA #IMPLIED
|
|
send_to CDATA #IMPLIED
|
|
receive_from CDATA #IMPLIED>
|
|
|
|
<!ELEMENT limit (#PCDATA)>
|
|
<!ATTLIST limit name CDATA #REQUIRED>
|
|
|
|
<!ELEMENT selinux (associate)*>
|
|
<!ELEMENT associate EMPTY>
|
|
<!ATTLIST associate
|
|
own CDATA #REQUIRED
|
|
context CDATA #REQUIRED>
|