module onlyoffice_docserver 1.0;

require {
        type httpd_sys_content_t;
        type amqp_port_t;
        type mysqld_port_t;
        type init_t;
        class file { execute execute_no_trans getattr map open read };
        class process execmem;
        class tcp_socket name_connect;
}

#============= init_t ==============
allow init_t amqp_port_t:tcp_socket name_connect;
allow init_t mysqld_port_t:tcp_socket name_connect;
allow init_t httpd_sys_content_t:file map;
allow init_t httpd_sys_content_t:file { execute execute_no_trans getattr open read };
allow init_t self:process execmem;