1 policy_module(rtorrent, 0.0.19)
6 type public_content_rw_t;
13 # File context for the executable process
18 files_type(rtorrent_rw_t)
21 files_type(rtorrent_ro_t)
23 # _sky_files_use_tmp(rtorrent_t, rtorrent_tmp_t)
25 init_daemon_domain(rtorrent_t, rtorrent_exec_t)
27 # corenet_udp_sendrecv_generic_port(rtorrent_t)
28 corenet_udp_bind_generic_port(rtorrent_t)
29 corenet_udp_bind_generic_node(rtorrent_t)
30 corenet_tcp_sendrecv_generic_port(rtorrent_t)
31 corenet_tcp_bind_generic_port(rtorrent_t)
32 corenet_tcp_bind_generic_node(rtorrent_t)
34 corenet_tcp_connect_all_unreserved_ports(rtorrent_t)
35 corenet_tcp_connect_all_ephemeral_ports(rtorrent_t)
36 corenet_tcp_connect_http_port(rtorrent_t)
38 allow rtorrent_t self:tcp_socket { create_stream_socket_perms connected_stream_socket_perms };
40 # Needed to start /bin/bash
41 #exec_files_pattern(rtorrent_t, bin_t, shell_exec_t)
43 # Needed to start java
44 # exec_files_pattern(rtorrent_t, bin_t, bin_t)
45 # _sky_java_process(rtorrent_t)
47 read_files_pattern(rtorrent_t, rtorrent_ro_t, rtorrent_ro_t)
48 read_lnk_files_pattern(rtorrent_t, rtorrent_ro_t, rtorrent_ro_t)
49 mmap_files_pattern(rtorrent_t, rtorrent_ro_t, rtorrent_ro_t)
51 read_files_pattern(rtorrent_t, public_content_t, public_content_t)
52 read_lnk_files_pattern(rtorrent_t, public_content_t, public_content_t)
53 mmap_files_pattern(rtorrent_t, public_content_t, public_content_t)
55 manage_files_pattern(rtorrent_t, rtorrent_rw_t, rtorrent_rw_t)
56 manage_dirs_pattern(rtorrent_t, rtorrent_rw_t, rtorrent_rw_t)
57 manage_lnk_files_pattern(rtorrent_t, rtorrent_rw_t, rtorrent_rw_t)
58 mmap_files_pattern(rtorrent_t, rtorrent_rw_t, rtorrent_rw_t)
60 manage_files_pattern(rtorrent_t, public_content_rw_t, public_content_rw_t)
61 mmap_files_pattern(rtorrent_t, public_content_rw_t, public_content_rw_t)
63 sysnet_dns_name_resolve(rtorrent_t)
65 #sssd_read_public_files(rtorrent_t)
67 #dev_read_rand(rtorrent_t)
68 #dev_read_sysfs(rtorrent_t)
70 allow rtorrent_t fs_t:filesystem getattr;