901a905cbb
- add systemd service macro sets - add some documentation - add some recursion to some macro sets (ipv perm, object class sets) - deprecate domain_trans and domain_auto_trans - remove unpriv_socket_class_set
21 lines
462 B
Cheetah
21 lines
462 B
Cheetah
#
|
|
# unix domain socket patterns
|
|
#
|
|
# Parameters:
|
|
# 1. source domain type
|
|
# 2. container (directory) type
|
|
# 3. socket type
|
|
# 4. target domain type
|
|
#
|
|
define(`stream_connect_pattern',`
|
|
allow $1 $2:dir search_dir_perms;
|
|
allow $1 $3:sock_file write_sock_file_perms;
|
|
allow $1 $4:unix_stream_socket connectto;
|
|
')
|
|
|
|
define(`dgram_send_pattern',`
|
|
allow $1 $2:dir search_dir_perms;
|
|
allow $1 $3:sock_file write_sock_file_perms;
|
|
allow $1 $4:unix_dgram_socket sendto;
|
|
')
|