psss / rpms / selinux-policy

Forked from rpms/selinux-policy 5 years ago
Clone
Source Code
GIT

Blame wdmd.te

f10 f11 f12 f13 f14 f15 f16 f17 f18 f19 f20 f21 f22 f23 f24 f25 f26 f27 f28 f29 f7 f8 f9 master master-docker master_contrib private-master-atomic-policy private-master-migrate-to-var-lib-selinux requires tests
  1.   master_contrib
  2.   wdmd.te
Blob History Raw
Dominick Grift af75121 
policy_module(wdmd, 1.0.3)
1ec3d1a
1ec3d1a 
########################################
1ec3d1a 
#
1ec3d1a 
# Declarations
1ec3d1a 
#
1ec3d1a
1ec3d1a 
type wdmd_t;
1ec3d1a 
type wdmd_exec_t;
1ec3d1a 
init_daemon_domain(wdmd_t, wdmd_exec_t)
1ec3d1a
1ec3d1a 
type wdmd_initrc_exec_t;
1ec3d1a 
init_script_file(wdmd_initrc_exec_t)
1ec3d1a
511e9b4 
type wdmd_tmpfs_t;
511e9b4 
files_tmpfs_file(wdmd_tmpfs_t)
511e9b4
Dominick Grift 620fcd8 
type wdmd_var_run_t;
Dominick Grift 620fcd8 
files_pid_file(wdmd_var_run_t)
Dominick Grift 620fcd8
Dominick Grift 620fcd8 
########################################
Dominick Grift 620fcd8 
#
Dominick Grift 620fcd8 
# Local policy
Dominick Grift 620fcd8 
#
Dominick Grift 620fcd8
Dominick Grift 620fcd8 
allow wdmd_t self:capability { chown sys_nice ipc_lock };
Dominick Grift 620fcd8 
allow wdmd_t self:process { setsched signal };
Dominick Grift 620fcd8 
allow wdmd_t self:fifo_file rw_fifo_file_perms;
Dominick Grift 56651a1 
allow wdmd_t self:unix_stream_socket { accept listen };
1ec3d1a
1ec3d1a 
manage_dirs_pattern(wdmd_t, wdmd_var_run_t, wdmd_var_run_t)
1ec3d1a 
manage_files_pattern(wdmd_t, wdmd_var_run_t, wdmd_var_run_t)
1ec3d1a 
manage_sock_files_pattern(wdmd_t, wdmd_var_run_t, wdmd_var_run_t)
1ec3d1a 
files_pid_filetrans(wdmd_t, wdmd_var_run_t, { file dir sock_file })
1ec3d1a
511e9b4 
manage_dirs_pattern(wdmd_t, wdmd_tmpfs_t, wdmd_tmpfs_t)
511e9b4 
manage_files_pattern(wdmd_t, wdmd_tmpfs_t, wdmd_tmpfs_t)
511e9b4 
fs_tmpfs_filetrans(wdmd_t, wdmd_tmpfs_t, { dir file })
511e9b4
26f4d92 
kernel_read_system_state(wdmd_t)
26f4d92
26f4d92 
corecmd_exec_bin(wdmd_t)
26f4d92 
corecmd_exec_shell(wdmd_t)
26f4d92
1ec3d1a 
dev_read_watchdog(wdmd_t)
1ec3d1a 
dev_write_watchdog(wdmd_t)
1ec3d1a
1ec3d1a 
fs_read_anon_inodefs_files(wdmd_t)
1ec3d1a
1ec3d1a 
auth_use_nsswitch(wdmd_t)
1ec3d1a
1ec3d1a 
logging_send_syslog_msg(wdmd_t)
26f4d92
26f4d92 
optional_policy(`
26f4d92 
	corosync_initrc_domtrans(wdmd_t)
26f4d92 
	corosync_stream_connect(wdmd_t)
26f4d92 
	corosync_rw_tmpfs(wdmd_t)
26f4d92 
')
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.