## Tools for managing and hosting git repositories. ####################################### ## ## Execute a domain transition to run gitosis. ## ## ## ## Domain allowed to transition. ## ## # interface(`gitosis_domtrans',` gen_require(` type gitosis_t, gitosis_exec_t; ') corecmd_search_bin($1) domtrans_pattern($1, gitosis_exec_t, gitosis_t) ') ####################################### ## ## Execute gitosis-serve in the ## gitosis domain, and allow the ## specified role the gitosis domain. ## ## ## ## Domain allowed to transition. ## ## ## ## ## Role allowed access. ## ## # interface(`gitosis_run',` gen_require(` attribute_role gitosis_roles; ') gitosis_domtrans($1) roleattribute $2 gitosis_roles; ') ####################################### ## ## Read gitosis lib files. ## ## ## ## Domain allowed access. ## ## # interface(`gitosis_read_lib_files',` gen_require(` type gitosis_var_lib_t; ') files_search_var_lib($1) read_files_pattern($1, gitosis_var_lib_t, gitosis_var_lib_t) read_lnk_files_pattern($1, gitosis_var_lib_t, gitosis_var_lib_t) list_dirs_pattern($1, gitosis_var_lib_t, gitosis_var_lib_t) ') ####################################### ## ## Mmap gitosis lib files. ## ## ## ## Domain allowed access. ## ## # interface(`gitosis_mmap_lib_files',` gen_require(` type gitosis_var_lib_t; ') allow $1 gitosis_var_lib_t:file map; ') ###################################### ## ## Create, read, write, and delete ## gitosis lib files. ## ## ## ## Domain allowed access. ## ## # interface(`gitosis_manage_lib_files',` gen_require(` type gitosis_var_lib_t; ') files_search_var_lib($1) manage_files_pattern($1, gitosis_var_lib_t, gitosis_var_lib_t) ')