|
|
@@ -1,4 +1,4 @@
|
|
|
-policy_module(minecraft, 1.1.9)
|
|
|
+policy_module(minecraft, 1.1.10)
|
|
|
|
|
|
########################################
|
|
|
#
|
|
|
@@ -38,6 +38,9 @@ manage_files_pattern(minecraft_t,minecraft_tmp_t,minecraft_tmp_t)
|
|
|
allow minecraft_t minecraft_tmp_t:file execute;
|
|
|
files_tmp_filetrans(minecraft_t,minecraft_tmp_t, { file dir })
|
|
|
|
|
|
+allow minecraft_t minecraft_opt_t:file map;
|
|
|
+allow minecraft_t minecraft_tmp_t:file map;
|
|
|
+
|
|
|
corecmd_exec_bin(minecraft_t)
|
|
|
corecmd_exec_shell(minecraft_t)
|
|
|
|
|
|
@@ -62,6 +65,9 @@ corenet_tcp_connect_http_port(minecraft_t)
|
|
|
corenet_tcp_bind_all_unreserved_ports(minecraft_t)
|
|
|
corenet_tcp_bind_generic_node(minecraft_t)
|
|
|
|
|
|
+fs_read_cgroup_files(minecraft_t)
|
|
|
+fs_search_cgroup_dirs(minecraft_t)
|
|
|
+
|
|
|
java_exec(minecraft_t)
|
|
|
|
|
|
optional_policy(`
|
