3648c68a22
As of the following upstream commit to checkpolicy, compiling
policy modules with filenames which differ from the module
directive will fail:
c6acfae4bc
This patch makes the policy filenames match the module directive
in the policy file, resolving the issue.
Change-Id: I5730bc51658bb886eacedd8af2c6251e1f8387f5
Closes-bug: 1636613
Signed-off-by: Lon Hohberger <lhh@redhat.com>
21 lines
639 B
Plaintext
21 lines
639 B
Plaintext
|
|
module tripleo-selinux-rabbitmq 1.0;
|
|
|
|
require {
|
|
type rabbitmq_var_lib_t;
|
|
type rabbitmq_beam_t;
|
|
type rabbitmq_var_log_t;
|
|
type rabbitmq_t;
|
|
type hostname_exec_t;
|
|
class lnk_file read;
|
|
class file { read getattr open execute execute_no_trans };
|
|
}
|
|
|
|
#============= rabbitmq_beam_t ==============
|
|
# https://bugs.launchpad.net/tripleo/+bug/1373145
|
|
allow rabbitmq_beam_t rabbitmq_var_lib_t:lnk_file read;
|
|
|
|
# https://bugs.launchpad.net/tripleo/+bug/1396417
|
|
allow rabbitmq_t hostname_exec_t:file { read getattr open execute execute_no_trans };
|
|
allow rabbitmq_t rabbitmq_var_log_t:lnk_file read;
|