module mybitlbeeFT 1.0;

require {
	type tmp_t;
	type bitlbee_t;
	type port_t;
	class process signal;
	class tcp_socket name_connect;
	class fifo_file { read write getattr };
	class dir { write remove_name add_name };
	class file { read write create unlink getattr };
}

#============= bitlbee_t ==============
allow bitlbee_t port_t:tcp_socket name_connect;
allow bitlbee_t self:fifo_file { read write getattr };
allow bitlbee_t self:process signal;
allow bitlbee_t tmp_t:dir { write remove_name add_name };
allow bitlbee_t tmp_t:file { read write create unlink getattr };