abrt_read_pid_files(domain)
abrt_read_state(domain)
abrt_signull(domain)
- abrt_stream_connect(domain)
')
optional_policy(`
userdom_dontaudit_search_admin_dir($1)
userdom_read_all_users_state($1)
+ optional_policy(`
+ abrt_stream_connect($1)
+ ')
+
optional_policy(`
rpm_script_dbus_chat($1)
')
domtrans_pattern(inetd_t, $2, $1)
allow inetd_t $1:process { siginh sigkill };
+
+ optional_policy(`
+ abrt_stream_connect($1)
+ ')
')
########################################
# these apps are often redirect output to random log files
logging_inherit_append_all_logs($1)
+ optional_policy(`
+ abrt_stream_connect($1)
+ ')
+
optional_policy(`
cron_rw_pipes($1)
')
')
optional_policy(`
- abrt_manage_pid_files(initrc_t)
- ')
+ abrt_manage_pid_files(initrc_t)
+ ')
optional_policy(`
bind_manage_config_dirs(initrc_t)
init_rw_script_stream_sockets(daemon)
+optional_policy(`
+ abrt_stream_connect(daemon)
+')
+
optional_policy(`
fail2ban_read_lib_files(daemon)
')
allow init_t var_run_t:dir relabelto;
init_stream_connect(initrc_t)
-
allow $1_t self:process execstack;
')
+ optional_policy(`
+ abrt_stream_connect($1_usertype)
+ ')
+
optional_policy(`
fs_list_cgroup_dirs($1_usertype)
')