From ddae1cc9ec1f546ba9c40617fa698f504b9a3c65 Mon Sep 17 00:00:00 2001 From: Jeremy Solt Date: Mon, 8 Mar 2010 11:32:39 -0500 Subject: [PATCH] Creates sock files in /tmp, reads network state. - From Dan Walsh I didn't include userdom_search_user_home_dirs, this is redundant with the call to userdom_user_home_dir_filetrans --- policy/modules/admin/kismet.te | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/policy/modules/admin/kismet.te b/policy/modules/admin/kismet.te index b645b3c5..de984917 100644 --- a/policy/modules/admin/kismet.te +++ b/policy/modules/admin/kismet.te @@ -53,7 +53,8 @@ logging_log_filetrans(kismet_t, kismet_log_t, { file dir }) manage_dirs_pattern(kismet_t, kismet_tmp_t, kismet_tmp_t) manage_files_pattern(kismet_t, kismet_tmp_t, kismet_tmp_t) -files_tmp_filetrans(kismet_t, kismet_tmp_t, { file dir }) +manage_sock_files_pattern(kismet_t, kismet_tmp_t, kismet_tmp_t) +files_tmp_filetrans(kismet_t, kismet_tmp_t, { file dir sock_file }) manage_dirs_pattern(kismet_t, kismet_tmpfs_t, kismet_tmpfs_t) manage_files_pattern(kismet_t, kismet_tmpfs_t, kismet_tmpfs_t) @@ -69,6 +70,7 @@ files_pid_filetrans(kismet_t, kismet_var_run_t, { file dir }) kernel_search_debugfs(kismet_t) kernel_read_system_state(kismet_t) +kernel_read_network_state(kismet_t) corecmd_exec_bin(kismet_t)