|
@@ -0,0 +1,39 @@
|
|
|
+########################################
|
|
|
+## <summary>
|
|
|
+## Execute the git binary in the caller domain.
|
|
|
+## </summary>
|
|
|
+## <param name="domain">
|
|
|
+## <summary>
|
|
|
+## Domain allowed access.
|
|
|
+## </summary>
|
|
|
+## </param>
|
|
|
+#
|
|
|
+interface(`git_exec',`
|
|
|
+ gen_require(`
|
|
|
+ type git_exec_t;
|
|
|
+ ')
|
|
|
+
|
|
|
+ corecmd_search_bin($1)
|
|
|
+ can_exec($1, git_exec_t)
|
|
|
+')
|
|
|
+
|
|
|
+########################################
|
|
|
+## <summary>
|
|
|
+## Read files and directories of type git_usr_t.
|
|
|
+## </summary>
|
|
|
+## <param name="domain">
|
|
|
+## <summary>
|
|
|
+## Domain allowed access.
|
|
|
+## </summary>
|
|
|
+## </param>
|
|
|
+#
|
|
|
+interface(`git_read_usr_t',`
|
|
|
+ gen_require(`
|
|
|
+ type git_usr_t;
|
|
|
+ ')
|
|
|
+
|
|
|
+ search_dirs_pattern($1, git_usr_t, git_usr_t)
|
|
|
+ list_dirs_pattern($1, git_usr_t, git_usr_t)
|
|
|
+ read_files_pattern($1, git_usr_t, git_usr_t)
|
|
|
+ getattr_files_pattern($1, git_usr_t, git_usr_t)
|
|
|
+')
|