ut2004/ut2004.te

   1 policy_module(ut2004, 0.1.4)
   2
   3 require {
   4     type interwise_port_t;
   5 }
   6
   7 # File context for the executable process
   8 type ut2004_t;
   9 type ut2004_exec_t;
  10
  11 type ut2004_rw_t;
  12 files_type(ut2004_rw_t)
  13
  14 type ut2004_ro_t;
  15 files_type(ut2004_ro_t)
  16
  17 init_domain(ut2004_t, ut2004_exec_t)
  18 init_daemon_domain(ut2004_t, ut2004_exec_t)
  19
  20 corenet_udp_sendrecv_generic_port(ut2004_t)
  21 corenet_udp_bind_generic_port(ut2004_t)
  22 corenet_udp_bind_generic_node(ut2004_t)
  23
  24 read_files_pattern(ut2004_t, ut2004_ro_t, ut2004_ro_t)
  25 list_dirs_pattern(ut2004_t, ut2004_ro_t, ut2004_ro_t)
  26
  27 manage_files_pattern(ut2004_t, ut2004_rw_t, ut2004_rw_t)
  28 manage_dirs_pattern(ut2004_t, ut2004_rw_t, ut2004_rw_t)
  29 setattr_files_pattern(ut2004_t, ut2004_rw_t, ut2004_rw_t)
  30
  31 sysnet_dns_name_resolve(ut2004_t)
  32 #files_tmp_filetrans(ut2004_t, ut2004_tmp_t, { file dir})
  33
  34 # The UT2004 default port is labelled interwise_port_t on some
  35 # Fedora policies
  36 allow ut2004_t interwise_port_t:udp_socket name_bind;