X-Git-Url: https://git.camperquake.de/gitweb.cgi?a=blobdiff_plain;f=cod4%2Fcod4.te;fp=cod4%2Fcod4.te;h=9d9a7a37c31b87ba62d26412ced5752cbd2fccff;hb=1f1b238b667e901fa43a79d9e3e73d6e8e5eb7cd;hp=0000000000000000000000000000000000000000;hpb=8443aec4d42c93b0aa92243f1eaf106bddc03b18;p=selinux.git

diff --git a/cod4/cod4.te b/cod4/cod4.te
new file mode 100644
index 0000000..9d9a7a3
--- /dev/null
+++ b/cod4/cod4.te
@@ -0,0 +1,26 @@
+policy_module(cod4, 0.1.13)
+
+# File context for the executable process
+type cod4_t;
+type cod4_exec_t;
+
+type cod4_rw_t;
+files_type(cod4_rw_t)
+
+type cod4_ro_t;
+files_type(cod4_ro_t)
+
+init_daemon_domain(cod4_t, cod4_exec_t)
+
+corenet_udp_sendrecv_generic_port(cod4_t)
+corenet_udp_bind_generic_port(cod4_t)
+corenet_udp_bind_generic_node(cod4_t)
+
+allow cod4_t cod4_ro_t:dir list_dir_perms;
+allow cod4_t cod4_ro_t:file read_file_perms;
+
+manage_files_pattern(cod4_t, cod4_rw_t, cod4_rw_t)
+manage_dirs_pattern(cod4_t, cod4_rw_t, cod4_rw_t)
+setattr_files_pattern(cod4_t, cod4_rw_t, cod4_rw_t)
+
+sysnet_dns_name_resolve(cod4_t)