-policy_module(cod4, 0.1.26)
+policy_module(cod4, 0.1.38)
+
+require {
+ type games_data_t;
+}
# File context for the executable process
type cod4_t;
type cod4_ro_t;
files_type(cod4_ro_t)
+init_domain(cod4_t, cod4_exec_t)
init_daemon_domain(cod4_t, cod4_exec_t)
corenet_udp_sendrecv_generic_port(cod4_t)
corenet_udp_bind_generic_node(cod4_t)
read_files_pattern(cod4_t, cod4_ro_t, cod4_ro_t)
+list_dirs_pattern(cod4_t, cod4_ro_t, cod4_ro_t)
manage_files_pattern(cod4_t, cod4_rw_t, cod4_rw_t)
manage_dirs_pattern(cod4_t, cod4_rw_t, cod4_rw_t)
setattr_files_pattern(cod4_t, cod4_rw_t, cod4_rw_t)
sysnet_dns_name_resolve(cod4_t)
+
+allow init_t cod4_t:process { noatsecure };
+
+list_dirs_pattern(cod4_t, games_data_t, games_data_t)