projects / people / stevee / selinux-policy.git / blame
| Commit | Line | Data |
|---|---|---|
| 30e4a4ed | 1 | policy_module(bugzilla, 1.0.0) |
| 3eaa9939 DW |
2 | |
| 3 | ######################################## | |
| 4 | # | |
| 5 | # Declarations | |
| 6 | # | |
| 7 | ||
| 8 | apache_content_template(bugzilla) | |
| 9 | ||
| 10 | type httpd_bugzilla_tmp_t; | |
| 11 | files_tmp_file(httpd_bugzilla_tmp_t) | |
| 12 | ||
| 13 | ######################################## | |
| 14 | # | |
| 15 | # bugzilla local policy | |
| 16 | # | |
| 17 | ||
| 18 | allow httpd_bugzilla_script_t self:netlink_route_socket r_netlink_socket_perms; | |
| 19 | allow httpd_bugzilla_script_t self:tcp_socket create_stream_socket_perms; | |
| 20 | allow httpd_bugzilla_script_t self:udp_socket create_socket_perms; | |
| 21 | ||
| 22 | corenet_all_recvfrom_unlabeled(httpd_bugzilla_script_t) | |
| 23 | corenet_all_recvfrom_netlabel(httpd_bugzilla_script_t) | |
| a90706ef DW |
24 | corenet_tcp_sendrecv_generic_if(httpd_bugzilla_script_t) |
| 25 | corenet_udp_sendrecv_generic_if(httpd_bugzilla_script_t) | |
| 26 | corenet_tcp_sendrecv_generic_node(httpd_bugzilla_script_t) | |
| 27 | corenet_udp_sendrecv_generic_node(httpd_bugzilla_script_t) | |
| 3eaa9939 DW |
28 | corenet_tcp_sendrecv_all_ports(httpd_bugzilla_script_t) |
| 29 | corenet_udp_sendrecv_all_ports(httpd_bugzilla_script_t) | |
| 30 | corenet_tcp_connect_postgresql_port(httpd_bugzilla_script_t) | |
| 31 | corenet_tcp_connect_mysqld_port(httpd_bugzilla_script_t) | |
| 32 | corenet_tcp_connect_http_port(httpd_bugzilla_script_t) | |
| 33 | corenet_tcp_connect_smtp_port(httpd_bugzilla_script_t) | |
| 34 | corenet_sendrecv_postgresql_client_packets(httpd_bugzilla_script_t) | |
| 35 | corenet_sendrecv_mysqld_client_packets(httpd_bugzilla_script_t) | |
| 36 | ||
| 37 | manage_dirs_pattern(httpd_bugzilla_script_t, httpd_bugzilla_tmp_t, httpd_bugzilla_tmp_t) | |
| 38 | manage_files_pattern(httpd_bugzilla_script_t, httpd_bugzilla_tmp_t, httpd_bugzilla_tmp_t) | |
| 39 | files_tmp_filetrans(httpd_bugzilla_script_t, httpd_bugzilla_tmp_t, { file dir }) | |
| 40 | ||
| 41 | files_search_var_lib(httpd_bugzilla_script_t) | |
| 42 | ||
| 3eaa9939 DW |
43 | sysnet_read_config(httpd_bugzilla_script_t) |
| 44 | sysnet_use_ldap(httpd_bugzilla_script_t) | |
| 45 | ||
| 01ada3cd MG |
46 | optional_policy(` |
| 47 | mta_send_mail(httpd_bugzilla_script_t) | |
| 48 | ') | |
| 49 | ||
| 3eaa9939 DW |
50 | optional_policy(` |
| 51 | mysql_search_db(httpd_bugzilla_script_t) | |
| 52 | mysql_stream_connect(httpd_bugzilla_script_t) | |
| 53 | ') | |
| 54 | ||
| 55 | optional_policy(` | |
| 56 | postgresql_stream_connect(httpd_bugzilla_script_t) | |
| 57 | ') |