Home Explore Help
Sign In
Hoshpak
/
gentoo-selinux-policies
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

signaling: allow reading of etc files

Helmut Pozimski 3 years ago
parent
0919cade3b
commit
0690bffa60
1 changed files with 4 additions and 1 deletions
Split View Show Diff Stats
  1. 4 1
      signaling.te

+ 4 - 1
signaling.te
View File 

@@ -1,4 +1,4 @@
 
-policy_module(signaling, 0.0.2)
 
+policy_module(signaling, 0.0.3)
 
 
 ########################################
 
 #
 
@@ -17,6 +17,7 @@ allow signaling_t self:process { getsched signal };
 
 allow signaling_t self:tcp_socket { accept bind connect create getattr getopt listen read setopt write };
 
 allow signaling_t self:udp_socket { connect create getattr read setopt write };
 
 allow signaling_t self:unix_dgram_socket { connect create };
 
+allow signaling_t self:netlink_route_socket create;
 
 
 corenet_tcp_bind_http_cache_port(signaling_t)
 
 corenet_tcp_connect_http_port(signaling_t)
 
@@ -35,6 +36,8 @@ kernel_read_net_sysctls(signaling_t)
 
 
 dev_read_sysfs(signaling_t)
 
 
+files_read_etc_files(signaling_t)
 
+
 
 optional_policy(`
 
   gen_require(`
 
     type supervisor_t;