[selinux-policy: 2499/3172] Creates sock files in /tmp, reads network state. - From Dan Walsh
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 22:42:09 UTC 2010
commit ddae1cc9ec1f546ba9c40617fa698f504b9a3c65
Author: Jeremy Solt <jsolt at tresys.com>
Date: Mon Mar 8 11:32:39 2010 -0500
Creates sock files in /tmp, reads network state. - From Dan Walsh
I didn't include userdom_search_user_home_dirs, this is redundant with
the call to userdom_user_home_dir_filetrans
policy/modules/admin/kismet.te | 4 +++-
1 files changed, 3 insertions(+), 1 deletions(-)
---
diff --git a/policy/modules/admin/kismet.te b/policy/modules/admin/kismet.te
index b645b3c..de98491 100644
--- a/policy/modules/admin/kismet.te
+++ b/policy/modules/admin/kismet.te
@@ -53,7 +53,8 @@ logging_log_filetrans(kismet_t, kismet_log_t, { file dir })
manage_dirs_pattern(kismet_t, kismet_tmp_t, kismet_tmp_t)
manage_files_pattern(kismet_t, kismet_tmp_t, kismet_tmp_t)
-files_tmp_filetrans(kismet_t, kismet_tmp_t, { file dir })
+manage_sock_files_pattern(kismet_t, kismet_tmp_t, kismet_tmp_t)
+files_tmp_filetrans(kismet_t, kismet_tmp_t, { file dir sock_file })
manage_dirs_pattern(kismet_t, kismet_tmpfs_t, kismet_tmpfs_t)
manage_files_pattern(kismet_t, kismet_tmpfs_t, kismet_tmpfs_t)
@@ -69,6 +70,7 @@ files_pid_filetrans(kismet_t, kismet_var_run_t, { file dir })
kernel_search_debugfs(kismet_t)
kernel_read_system_state(kismet_t)
+kernel_read_network_state(kismet_t)
corecmd_exec_bin(kismet_t)
More information about the scm-commits
mailing list