rpms/selinux-policy
5
0
Fork 0
Code Issues Pull Requests Releases Activity

Use stream connect pattern.

Browse Source 
Use stream connect pattern.
This commit is contained in:
Dominick Grift 2010-09-20 11:54:26 +02:00
parent ab33cc0cf1
commit bece7c48bb
2 changed files with 6 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
policy/modules/services/gpm.if
View File

@ -16,8 +16,7 @@ interface(`gpm_stream_connect',`
type gpmctl_t, gpm_t; type gpmctl_t, gpm_t;
') ')
allow $1 gpmctl_t:sock_file rw_sock_file_perms; stream_connect_pattern($1, gpmctl_t, gpmctl_t, gpm_t)
allow $1 gpm_t:unix_stream_socket connectto;
') ')
######################################## ########################################

7
policy/modules/services/nscd.if
View File

@ -164,8 +164,11 @@ interface(`nscd_shm_use',`
# nscd_socket_domain macro. need to investigate # nscd_socket_domain macro. need to investigate
# if they are all actually required # if they are all actually required
allow $1 self:unix_stream_socket create_stream_socket_perms; allow $1 self:unix_stream_socket create_stream_socket_perms;
allow $1 nscd_t:unix_stream_socket connectto;
allow $1 nscd_var_run_t:sock_file rw_file_perms; # dg: This may not be required.
allow $1 nscd_var_run_t:sock_file read_sock_file_perms;
stream_connect_pattern($1, nscd_var_run_t, nscd_var_run_t, nscd_t)
files_search_pids($1) files_search_pids($1)
allow $1 nscd_t:nscd { getpwd getgrp gethost }; allow $1 nscd_t:nscd { getpwd getgrp gethost };
dontaudit $1 nscd_var_run_t:file { getattr read }; dontaudit $1 nscd_var_run_t:file { getattr read };