Add new interface apache_read_state()

Author: wrabcak

apache.if

@@ -485,6 +485,25 @@ interface(`apache_sigchld',`
 	allow $1 httpd_t:process sigchld;
 ')
 
+########################################
+## <summary>
+##	Allow the domain to read apache state files in /proc.
+## </summary>
+## <param name="domain">
+##	<summary>
+##	Domain allowed access.
+##	</summary>
+## </param>
+#
+interface(`apache_read_state',`
+	gen_require(`
+		type httpd_t;
+	')
+
+	kernel_search_proc($1)
+	ps_process_pattern($1, httpd_t)
+')
+
 ########################################
 ## <summary>
 ##	Inherit and use file descriptors from Apache.