1 ## <summary>Trivial file transfer protocol daemon</summary>
3 ########################################
7 ## <param name="domain">
9 ## Domain allowed access.
13 interface(`tftp_read_content',`
19 read_files_pattern($1, tftpdir_t, tftpdir_t)
20 read_lnk_files_pattern($1, tftpdir_t, tftpdir_t)
22 read_files_pattern($1, tftpdir_rw_t, tftpdir_rw_t)
23 read_lnk_files_pattern($1, tftpdir_rw_t, tftpdir_rw_t)
26 ########################################
28 ## Search tftp /var/lib directories.
30 ## <param name="domain">
32 ## Domain allowed access.
36 interface(`tftp_search_rw_content',`
41 search_dirs_pattern($1, tftpdir_rw_t, tftpdir_rw_t)
42 files_search_var_lib($1)
45 ########################################
47 ## Manage tftp /var/lib files.
49 ## <param name="domain">
51 ## Domain allowed access.
55 interface(`tftp_manage_rw_content',`
60 files_search_var_lib($1)
61 manage_dirs_pattern($1, tftpdir_rw_t, tftpdir_rw_t)
62 manage_files_pattern($1, tftpdir_rw_t, tftpdir_rw_t)
65 ########################################
67 ## Create objects in tftpdir directories
68 ## with specified types.
70 ## <param name="domain">
72 ## Domain allowed access.
75 ## <param name="file_type">
80 ## <param name="object_class">
82 ## Class of the object being created.
86 interface(`tftp_filetrans_tftpdir',`
91 filetrans_pattern($1, tftpdir_rw_t, $2, $3)
92 files_search_var_lib($1)
95 ########################################
97 ## All of the rules required to administrate
98 ## an tftp environment
100 ## <param name="domain">
102 ## Domain allowed access.
107 interface(`tftp_admin',`
109 type tftpd_t, tftpdir_t, tftpdir_rw_t, tftpd_var_run_t;
112 allow $1 tftpd_t:process signal_perms;
113 ps_process_pattern($1, tftpd_t)
114 tunable_policy(`deny_ptrace',`',`
115 allow $1 tftp_t:process ptrace;
118 files_list_var_lib($1)
119 admin_pattern($1, tftpdir_rw_t)
121 admin_pattern($1, tftpdir_t)
124 admin_pattern($1, tftpd_var_run_t)