SEFlow: documentation for the macro "network

documentation for the macro "network_blocker"

This macro defines a policy factor with blocked network access

It is defined in the file licenses.m4.

m4 code:

define(`network_blocker',
`factor_base($1)dnl
define(`$1_types',
$1_types
$1_t)dnl
permit_everything(needed_classes,$1_free_t,$1_t)dnl
permit_everything(classes_no_network,$1_t,$1_free_t)dnl
permit_everything(classes_no_network,$1_t,$1_t)dnl
define(transitionsX$1_free_tX$1_tXprocess,$1_t)dnl
define(`role_typesX$1_free_r',patsubst(patsubst(notmember(`
$1_t
',patsubst(`role_typesX$1_free_r',`
',`)notmember(`
$1_t
',')),`
$',)
$1_t,^
,))dnl
allow_role_transitions(patsubst($1_roles,`
',`)allow_role_transitions('))dnl
')