Merge branch 'master' of ssh://git.camperquake.de:22003/selinux

[selinux.git] / httpd-unix-sock / httpd-unix-sock.te

diff --git a/httpd-unix-sock/httpd-unix-sock.te b/httpd-unix-sock/httpd-unix-sock.te
new file mode 100644 (file)
index 0000000..ef11af9
--- /dev/null
+++ b/httpd-unix-sock/httpd-unix-sock.te
@@ -0,0 +1,10 @@
+policy_module(httpd-unix-sock, 0.0.1)
+
+require {
+    type httpd_t;
+    type unconfined_service_t;
+}
+
+files_search_pids(httpd_t);
+files_write_generic_pid_pipes(httpd_t);
+allow httpd_t unconfined_service_t:unix_stream_socket { getattr connectto };