-policy_module(ut2004, 0.1.0)
+policy_module(ut2004, 0.1.4)
require {
type interwise_port_t;
type ut2004_ro_t;
files_type(ut2004_ro_t)
-#type ut2004_tmp_t;
-#files_tmp_file(ut2004_tmp_t)
-
+init_domain(ut2004_t, ut2004_exec_t)
init_daemon_domain(ut2004_t, ut2004_exec_t)
corenet_udp_sendrecv_generic_port(ut2004_t)
corenet_udp_bind_generic_port(ut2004_t)
corenet_udp_bind_generic_node(ut2004_t)
-allow ut2004_t ut2004_ro_t:dir list_dir_perms;
-allow ut2004_t ut2004_ro_t:file read_file_perms;
-#allow ut2004_t ut2004_tmp_t:file manage_file_perms;
-#allow ut2004_t ut2004_tmp_t:dir manage_dir_perms;
+read_files_pattern(ut2004_t, ut2004_ro_t, ut2004_ro_t)
+list_dirs_pattern(ut2004_t, ut2004_ro_t, ut2004_ro_t)
manage_files_pattern(ut2004_t, ut2004_rw_t, ut2004_rw_t)
manage_dirs_pattern(ut2004_t, ut2004_rw_t, ut2004_rw_t)