|
Chris PeBenito |
6bb0da3 |
|
|
Chris PeBenito |
6bb0da3 |
policy_module(myapp,1.0.0)
|
|
Chris PeBenito |
6bb0da3 |
|
|
Chris PeBenito |
6bb0da3 |
########################################
|
|
Chris PeBenito |
6bb0da3 |
#
|
|
Chris PeBenito |
6bb0da3 |
# Declarations
|
|
Chris PeBenito |
6bb0da3 |
#
|
|
Chris PeBenito |
6bb0da3 |
|
|
Chris PeBenito |
6bb0da3 |
type myapp_t;
|
|
Chris PeBenito |
6bb0da3 |
type myapp_exec_t;
|
|
Chris PeBenito |
6bb0da3 |
domain_type(myapp_t)
|
|
Chris PeBenito |
6bb0da3 |
domain_entry_file(myapp_t, myapp_exec_t)
|
|
Chris PeBenito |
6bb0da3 |
|
|
Chris PeBenito |
6bb0da3 |
type myapp_log_t;
|
|
Chris PeBenito |
6bb0da3 |
logging_log_file(myapp_log_t)
|
|
Chris PeBenito |
6bb0da3 |
|
|
Chris PeBenito |
6bb0da3 |
type myapp_tmp_t;
|
|
Chris PeBenito |
6bb0da3 |
files_tmp_file(myapp_tmp_t)
|
|
Chris PeBenito |
6bb0da3 |
|
|
Chris PeBenito |
6bb0da3 |
########################################
|
|
Chris PeBenito |
6bb0da3 |
#
|
|
Chris PeBenito |
6bb0da3 |
# Myapp local policy
|
|
Chris PeBenito |
6bb0da3 |
#
|
|
Chris PeBenito |
6bb0da3 |
|
|
Chris PeBenito |
ef659a4 |
allow myapp_t myapp_log_t:file { read_file_perms append_file_perms };
|
|
Chris PeBenito |
6bb0da3 |
|
|
Chris PeBenito |
6bb0da3 |
allow myapp_t myapp_tmp_t:file manage_file_perms;
|
|
Chris PeBenito |
5f4b569 |
files_tmp_filetrans(myapp_t,myapp_tmp_t,file)
|