LinuxLists.cc - [refpolicy] [PATCH 27/34]: patch to add a missing interface in the sysnetwork module

2011-02-16 06:33:46

Subject: [refpolicy] [PATCH 27/34]: patch to add a missing interface in the sysnetwork module

This patch adds a new interface to the sysnetwork module so
that the DHCP client state directories can be searched.

diff -pruN -x booleans.conf -x corenetwork.if -x corenetwork.te -x modules.conf refpolicy-git-02022011/policy/modules/system/sysnetwork.if refpolicy-git-02022011-new/policy/modules/system/sysnetwork.if
--- refpolicy-git-02022011/policy/modules/system/sysnetwork.if 2011-01-08 19:07:21.362760308 +0100
+++ refpolicy-git-02022011-new/policy/modules/system/sysnetwork.if 2011-01-26 02:00:41.013048782 +0100
@@ -215,6 +215,26 @@ interface(`sysnet_rw_dhcp_config',`

########################################
## <summary>
+## Search the DHCP client state
+## directories.
+## </summary>
+## <param name="domain">
+## <summary>
+## Domain allowed access.
+## </summary>
+## </param>
+#
+interface(`sysnet_search_dhcpc_state',`
+ gen_require(`
+ type dhcpc_state_t;
+ ')
+
+ files_search_var_lib($1)
+ allow $1 dhcpc_state_t:dir search_dir_perms;
+')
+
+########################################
+## <summary>
## Read dhcp client state files.
## </summary>
## <param name="domain">

2011-02-28 14:40:10

by cpebenito

[permalink] [raw]

Subject: [refpolicy] [PATCH 27/34]: patch to add a missing interface in the sysnetwork module

On 02/16/11 01:33, Guido Trentalancia wrote:
> This patch adds a new interface to the sysnetwork module so
> that the DHCP client state directories can be searched.

Merged.

> diff -pruN -x booleans.conf -x corenetwork.if -x corenetwork.te -x modules.conf refpolicy-git-02022011/policy/modules/system/sysnetwork.if refpolicy-git-02022011-new/policy/modules/system/sysnetwork.if
> --- refpolicy-git-02022011/policy/modules/system/sysnetwork.if 2011-01-08 19:07:21.362760308 +0100
> +++ refpolicy-git-02022011-new/policy/modules/system/sysnetwork.if 2011-01-26 02:00:41.013048782 +0100
> @@ -215,6 +215,26 @@ interface(`sysnet_rw_dhcp_config',`
>
> ########################################
> ## <summary>
> +## Search the DHCP client state
> +## directories.
> +## </summary>
> +## <param name="domain">
> +## <summary>
> +## Domain allowed access.
> +## </summary>
> +## </param>
> +#
> +interface(`sysnet_search_dhcpc_state',`
> + gen_require(`
> + type dhcpc_state_t;
> + ')
> +
> + files_search_var_lib($1)
> + allow $1 dhcpc_state_t:dir search_dir_perms;
> +')
> +
> +########################################
> +## <summary>
> ## Read dhcp client state files.
> ## </summary>
> ## <param name="domain">

--
Chris PeBenito
Tresys Technology, LLC
http://www.tresys.com | oss.tresys.com