Chris PeBenito 6bb0da
Chris PeBenito 6bb0da
policy_module(myapp,1.0.0)
Chris PeBenito 6bb0da
Chris PeBenito 6bb0da
########################################
Chris PeBenito 6bb0da
#
Chris PeBenito 6bb0da
# Declarations
Chris PeBenito 6bb0da
#
Chris PeBenito 6bb0da
Chris PeBenito 6bb0da
type myapp_t;
Chris PeBenito 6bb0da
type myapp_exec_t;
Chris PeBenito 6bb0da
domain_type(myapp_t)
Chris PeBenito 6bb0da
domain_entry_file(myapp_t, myapp_exec_t)
Chris PeBenito 6bb0da
Chris PeBenito 6bb0da
type myapp_log_t;
Chris PeBenito 6bb0da
logging_log_file(myapp_log_t)
Chris PeBenito 6bb0da
Chris PeBenito 6bb0da
type myapp_tmp_t;
Chris PeBenito 6bb0da
files_tmp_file(myapp_tmp_t)
Chris PeBenito 6bb0da
Chris PeBenito 6bb0da
########################################
Chris PeBenito 6bb0da
#
Chris PeBenito 6bb0da
# Myapp local policy
Chris PeBenito 6bb0da
#
Chris PeBenito 6bb0da
Chris PeBenito ef659a
allow myapp_t myapp_log_t:file { read_file_perms append_file_perms };
Chris PeBenito 6bb0da
Chris PeBenito 6bb0da
allow myapp_t myapp_tmp_t:file manage_file_perms;
Chris PeBenito 5f4b56
files_tmp_filetrans(myapp_t,myapp_tmp_t,file)