Additional fixes for docker.te

2013-12-16 12:38:58 +01:00 · 2013-12-16 12:38:58 +01:00 · fa3915aa88
commit fa3915aa88
parent 1fe4113ea7
1 changed files with 3 additions and 3 deletions
--- a/policy-rawhide-contrib.patch
+++ b/policy-rawhide-contrib.patch
@ -22509,7 +22509,7 @@ index 0000000..d856375
 +')
 diff --git a/docker.te b/docker.te
 new file mode 100644
-index 0000000..c5b0dcd
+index 0000000..f156949
 --- /dev/null
 +++ b/docker.te
@@ -0,0 +1,145 @@
@ -22610,8 +22610,8 @@ index 0000000..c5b0dcd
 +
 +allow docker_t self:capability { sys_admin sys_boot dac_override setpcap sys_ptrace };
 +allow docker_t self:process { setpgid setsched signal_perms };
-+allow docker_t self:netlink_route_socket nlmsg_write;
-+allow docker_t self:netlink_audit_socket create_netlink_perms;
+allow docker_t self:netlink_route_socket rw_netlink_socket_perms;;
+allow docker_t self:netlink_audit_socket create_netlink_socket_perms;
 +allow docker_t self:unix_dgram_socket create_socket_perms;
 +allow docker_t self:unix_stream_socket { create_stream_socket_perms connectto };
 +