This patch removes deprecated interfaces that were deprecated in the …

…20210203 release. I think that 2 years of support for a deprecated interface is enough and by the time we have the next release out it will probably be more than 2 years since 20210203. I think this is ready to merge. Signed-off-by: Russell Coker <russell@coker.com.au>
SELinuxProject · Dec 8, 2022 · 3ca0cd5 · 3ca0cd5
1 parent ced7229
commit 3ca0cd5
Show file tree

Hide file tree

Showing 71 changed files with 1 addition and 2,799 deletions.
diff --git a/policy/modules/admin/kismet.if b/policy/modules/admin/kismet.if
@@ -82,37 +82,6 @@ interface(`kismet_run',`
 	roleattribute $2 kismet_roles;
 ')
 
-########################################
-## <summary>
-##	Read kismet pid files.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`kismet_read_pid_files',`
-	refpolicywarn(`$0($*) has been deprecated, please use kismet_read_runtime_files() instead.')
-	kismet_read_runtime_files($1)
-')
-
-########################################
-## <summary>
-##	Create, read, write, and delete
-##	kismet pid files.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`kismet_manage_pid_files',`
-	refpolicywarn(`$0($*) has been deprecated, please use kismet_manage_runtime_files() instead.')
-	kismet_manage_runtime_files($1)
-')
-
 ########################################
 ## <summary>
 ##	Read kismet runtime files.

diff --git a/policy/modules/admin/rpm.if b/policy/modules/admin/rpm.if
@@ -525,61 +525,6 @@ interface(`rpm_dontaudit_manage_db',`
 	dontaudit $1 rpm_var_lib_t:file map;
 ')
 
-#####################################
-## <summary>
-##	Read rpm pid files.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`rpm_read_pid_files',`
-	refpolicywarn(`$0($*) has been deprecated.')
-')
-
-#####################################
-## <summary>
-##	Create, read, write, and delete
-##	rpm pid files.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`rpm_manage_pid_files',`
-	refpolicywarn(`$0($*) has been deprecated, please use rpm_manage_runtime_files() instead.')
-	rpm_manage_runtime_files($1)
-')
-
-########################################
-## <summary>
-##	Create specified objects in pid directories
-##	with the rpm pid file type.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-## <param name="object_class">
-##	<summary>
-##	Class of the object being created.
-##	</summary>
-## </param>
-## <param name="name" optional="true">
-##	<summary>
-##	The name of the object being created.
-##	</summary>
-## </param>
-#
-interface(`rpm_pid_filetrans_rpm_pid',`
-	refpolicywarn(`$0($*) has been deprecated')
-')
-
 #####################################
 ## <summary>
 ##	Create, read, write, and delete

diff --git a/policy/modules/admin/samhain.if b/policy/modules/admin/samhain.if
@@ -173,21 +173,6 @@ interface(`samhain_manage_log_files',`
 	manage_files_pattern($1, samhain_log_t, samhain_log_t)
 ')
 
-########################################
-## <summary>
-##	Create, read, write, and delete
-##	samhain pid files.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`samhain_manage_pid_files',`
-	refpolicywarn(`$0($*) has been deprecated.')
-')
-
 #######################################
 ## <summary>
 ##	All of the rules required to

diff --git a/policy/modules/admin/sblim.if b/policy/modules/admin/sblim.if
@@ -19,20 +19,6 @@ interface(`sblim_domtrans_gatherd',`
 	domtrans_pattern($1, sblim_gatherd_exec_t, sblim_gatherd_t)
 ')
 
-########################################
-## <summary>
-##	Read gatherd pid files.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`sblim_read_pid_files',`
-	refpolicywarn(`$0($*) has been deprecated.')
-')
-
 ########################################
 ## <summary>
 ##	All of the rules required to

diff --git a/policy/modules/apps/qemu.if b/policy/modules/apps/qemu.if
@@ -89,7 +89,7 @@ template(`qemu_domain_template',`
 	optional_policy(`
 		xserver_stream_connect($1_t)
 		xserver_read_xdm_tmp_files($1_t)
-		xserver_read_xdm_pid($1_t)
+		xserver_read_xdm_runtime_files($1_t)
 #		xserver_xdm_rw_shm($1_t)
 	')
 ')
@@ -280,21 +280,6 @@ interface(`qemu_stream_connect',`
 	stream_connect_pattern($1, qemu_runtime_t, qemu_runtime_t, qemu_t)
 ')
 
-########################################
-## <summary>
-##	Unlink qemu socket  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`qemu_delete_pid_sock_file',`
-	refpolicywarn(`$0($*) has been deprecated, please use qemu_delete_runtime_sock_files() instead.')
-	qemu_delete_runtime_sock_files($1)
-')
-
 ########################################
 ## <summary>
 ##	Unlink qemu runtime sockets.

diff --git a/policy/modules/kernel/corenetwork.if.m4 b/policy/modules/kernel/corenetwork.if.m4
@@ -461,112 +461,6 @@ interface(`corenet_udp_bind_$1_node',`
 ########################################
 
 define(`create_port_interfaces',``
-########################################
-## <summary>
-##	Send and receive TCP traffic on the $1 port.
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-## <infoflow type="both" weight="10"/>
-#
-interface(`corenet_tcp_sendrecv_$1_port',`
-	refpolicywarn(`dollarszero() has been deprecated, please remove.')
-')
-
-########################################
-## <summary>
-##	Send UDP traffic on the $1 port.
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-## <infoflow type="write" weight="10"/>
-#
-interface(`corenet_udp_send_$1_port',`
-	refpolicywarn(`dollarszero() has been deprecated, please remove.')
-')
-
-########################################
-## <summary>
-##	Do not audit attempts to send UDP traffic on the $1 port.
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain to not audit.
-##	</summary>
-## </param>
-## <infoflow type="none"/>
-#
-interface(`corenet_dontaudit_udp_send_$1_port',`
-	refpolicywarn(`dollarszero() has been deprecated, please remove.')
-')
-
-########################################
-## <summary>
-##	Receive UDP traffic on the $1 port.
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-## <infoflow type="read" weight="10"/>
-#
-interface(`corenet_udp_receive_$1_port',`
-	refpolicywarn(`dollarszero() has been deprecated, please remove.')
-')
-
-########################################
-## <summary>
-##	Do not audit attempts to receive UDP traffic on the $1 port.
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain to not audit.
-##	</summary>
-## </param>
-## <infoflow type="none"/>
-#
-interface(`corenet_dontaudit_udp_receive_$1_port',`
-	refpolicywarn(`dollarszero() has been deprecated, please remove.')
-')
-
-########################################
-## <summary>
-##	Send and receive UDP traffic on the $1 port.
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-## <infoflow type="both" weight="10"/>
-#
-interface(`corenet_udp_sendrecv_$1_port',`
-	refpolicywarn(`dollarszero() has been deprecated, please remove.')
-')
-
-########################################
-## <summary>
-##	Do not audit attempts to send and receive
-##	UDP traffic on the $1 port.
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain to not audit.
-##	</summary>
-## </param>
-## <infoflow type="none"/>
-#
-interface(`corenet_dontaudit_udp_sendrecv_$1_port',`
-	refpolicywarn(`dollarszero() has been deprecated, please remove.')
-')
-
 ########################################
 ## <summary>
 ##	Bind TCP sockets to the $1 port.

diff --git a/policy/modules/kernel/devices.if b/policy/modules/kernel/devices.if
@@ -3382,51 +3382,6 @@ interface(`dev_rw_mtrr',`
 	rw_chr_files_pattern($1, device_t, mtrr_device_t)
 ')
 
-########################################
-## <summary>
-##	Get the attributes of the network control device  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`dev_getattr_netcontrol_dev',`
-	refpolicywarn(`$0() has been deprecated, use dev_getattr_pmqos_dev() instead.')
-	dev_getattr_pmqos_dev($1)
-')
-
-########################################
-## <summary>
-##	Read the network control identity.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`dev_read_netcontrol',`
-	refpolicywarn(`$0() has been deprecated, use dev_read_pmqos() instead.')
-	dev_read_pmqos($1)
-')
-
-########################################
-## <summary>
-##	Read and write the the network control device.  (Deprecated)
-## </summary>
-## <param name="domain">
-##	<summary>
-##	Domain allowed access.
-##	</summary>
-## </param>
-#
-interface(`dev_rw_netcontrol',`
-	refpolicywarn(`$0() has been deprecated, use dev_rw_pmqos() instead.')
-	dev_rw_pmqos($1)
-')
-
 ########################################
 ## <summary>
 ##	Get the attributes of the null device nodes.