1# touch_fusion
2type touch_fusion, domain, domain_deprecated;
3type touch_fusion_exec, exec_type, file_type;
4
5# Why net_admin?
6allow touch_fusion self:capability { net_admin sys_nice };
7
8allow touch_fusion graphics_device:dir r_dir_perms;
9allow touch_fusion graphics_device:chr_file r_file_perms;
10allow touch_fusion kmsg_device:chr_file { w_file_perms getattr };
11allow touch_fusion self:netlink_socket create_socket_perms;
12