dnsmasq patch from dan.
This commit is contained in:
parent
93d300831d
commit
8f17f7c2ee
@ -20,6 +20,25 @@ interface(`dnsmasq_domtrans',`
|
|||||||
domtrans_pattern($1, dnsmasq_exec_t, dnsmasq_t)
|
domtrans_pattern($1, dnsmasq_exec_t, dnsmasq_t)
|
||||||
')
|
')
|
||||||
|
|
||||||
|
########################################
|
||||||
|
## <summary>
|
||||||
|
## Execute the dnsmasq init script in the init script domain.
|
||||||
|
## </summary>
|
||||||
|
## <param name="domain">
|
||||||
|
## <summary>
|
||||||
|
## Domain allowed access.
|
||||||
|
## </summary>
|
||||||
|
## </param>
|
||||||
|
#
|
||||||
|
#
|
||||||
|
interface(`dnsmasq_initrc_domtrans',`
|
||||||
|
gen_require(`
|
||||||
|
type dnsmasq_initrc_exec_t;
|
||||||
|
')
|
||||||
|
|
||||||
|
init_labeled_script_domtrans($1, dnsmasq_initrc_exec_t)
|
||||||
|
')
|
||||||
|
|
||||||
########################################
|
########################################
|
||||||
## <summary>
|
## <summary>
|
||||||
## Send dnsmasq a signal
|
## Send dnsmasq a signal
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
|
|
||||||
policy_module(dnsmasq, 1.7.2)
|
policy_module(dnsmasq, 1.7.3)
|
||||||
|
|
||||||
########################################
|
########################################
|
||||||
#
|
#
|
||||||
@ -42,8 +42,7 @@ manage_files_pattern(dnsmasq_t, dnsmasq_var_run_t, dnsmasq_var_run_t)
|
|||||||
files_pid_filetrans(dnsmasq_t, dnsmasq_var_run_t, file)
|
files_pid_filetrans(dnsmasq_t, dnsmasq_var_run_t, file)
|
||||||
|
|
||||||
kernel_read_kernel_sysctls(dnsmasq_t)
|
kernel_read_kernel_sysctls(dnsmasq_t)
|
||||||
kernel_list_proc(dnsmasq_t)
|
kernel_read_system_state(dnsmasq_t)
|
||||||
kernel_read_proc_symlinks(dnsmasq_t)
|
|
||||||
|
|
||||||
corenet_all_recvfrom_unlabeled(dnsmasq_t)
|
corenet_all_recvfrom_unlabeled(dnsmasq_t)
|
||||||
corenet_all_recvfrom_netlabel(dnsmasq_t)
|
corenet_all_recvfrom_netlabel(dnsmasq_t)
|
||||||
@ -87,6 +86,10 @@ optional_policy(`
|
|||||||
seutil_sigchld_newrole(dnsmasq_t)
|
seutil_sigchld_newrole(dnsmasq_t)
|
||||||
')
|
')
|
||||||
|
|
||||||
|
optional_policy(`
|
||||||
|
tftp_read_content(dnsmasq_t)
|
||||||
|
')
|
||||||
|
|
||||||
optional_policy(`
|
optional_policy(`
|
||||||
udev_read_db(dnsmasq_t)
|
udev_read_db(dnsmasq_t)
|
||||||
')
|
')
|
||||||
|
Loading…
Reference in New Issue
Block a user