From: sven.vermeulen@siphos.be (Sven Vermeulen)
Date: Wed, 31 Dec 2014 17:09:53 +0100
Subject: [refpolicy] [PATCH v2 1/6] Courier TCPd startup creates
	imapd.pid.lock and imapd.lock
In-Reply-To: <1420042198-4676-1-git-send-email-sven.vermeulen@siphos.be>
References: <1420042198-4676-1-git-send-email-sven.vermeulen@siphos.be>
Message-ID: <1420042198-4676-2-git-send-email-sven.vermeulen@siphos.be>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

Startup of courier-imapd creates /var/run/imapd.pid.lock and imapd.lock

Signed-off-by: Sven Vermeulen <sven.vermeulen@siphos.be>
---
 courier.fc | 2 ++
 courier.te | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/courier.fc b/courier.fc
index 2f017a0..abdc37e 100644
--- a/courier.fc
+++ b/courier.fc
@@ -27,6 +27,8 @@
 /var/lib/courier-imap(/.*)?	gen_context(system_u:object_r:courier_var_lib_t,s0)
 
 /var/run/courier(/.*)?	gen_context(system_u:object_r:courier_var_run_t,s0)
+/var/run/imapd\.pid	--	gen_context(system_u:object_r:courier_var_run_t,s0)
+/var/run/imapd\.pid\.lock	--	gen_context(system_u:object_r:courier_var_run_t,s0)
 
 /var/spool/authdaemon(/.*)?	gen_context(system_u:object_r:courier_spool_t,s0)
 /var/spool/courier(/.*)?	gen_context(system_u:object_r:courier_spool_t,s0)
diff --git a/courier.te b/courier.te
index ae3bc70..112a60b 100644
--- a/courier.te
+++ b/courier.te
@@ -172,6 +172,8 @@ corenet_tcp_sendrecv_pop_port(courier_tcpd_t)
 dev_read_rand(courier_tcpd_t)
 dev_read_urand(courier_tcpd_t)
 
+files_pid_filetrans(courier_tcpd_t, courier_var_run_t, file)
+
 miscfiles_read_localization(courier_tcpd_t)
 
 ########################################
-- 
2.0.5