rpms/selinux-policy
7
0
Fork 0
Code Issues Pull Requests Releases Activity

fix can_network_server expansion

Browse Source
This commit is contained in:
Chris PeBenito 2005-09-16 17:28:10 +00:00
parent 40adb57f47
commit a47ea60ca9
1 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
docs/macro_conversion_guide
View File

@ -373,7 +373,9 @@ sysnet_read_config($1)
# can_network_server(): # can_network_server():
# #
allow $1 self:tcp_socket create_stream_socket_perms; allow $1 self:tcp_socket create_stream_socket_perms;
allow $1 self:udp_socket { connect };
base_can_network($1, tcp, `$2') base_can_network($1, tcp, `$2')
base_can_network($1, udp, `$2')
# #
# can_network_server_tcp(): # can_network_server_tcp():
@ -754,11 +756,15 @@ kernel_read_kernel_sysctl($1_t)
kernel_read_system_state($1_t) kernel_read_system_state($1_t)
kernel_read_network_state($1_t) kernel_read_network_state($1_t)
corenet_tcp_sendrecv_all_if($1_t) corenet_tcp_sendrecv_all_if($1_t)
corenet_udp_sendrecv_all_if($1_t)
corenet_raw_sendrecv_all_if($1_t) corenet_raw_sendrecv_all_if($1_t)
corenet_tcp_sendrecv_all_nodes($1_t) corenet_tcp_sendrecv_all_nodes($1_t)
corenet_udp_sendrecv_all_nodes($1_t)
corenet_raw_sendrecv_all_nodes($1_t) corenet_raw_sendrecv_all_nodes($1_t)
corenet_tcp_bind_all_nodes($1_t)
corenet_tcp_sendrecv_all_ports($1_t) corenet_tcp_sendrecv_all_ports($1_t)
corenet_udp_sendrecv_all_ports($1_t)
corenet_tcp_bind_all_nodes($1_t)
corenet_udp_bind_all_nodes($1_t)
dev_read_urand($1_t) dev_read_urand($1_t)
fs_getattr_xattr_fs($1_t) fs_getattr_xattr_fs($1_t)
files_read_etc_files($1_t) files_read_etc_files($1_t)