Gentoo Archives: gentoo-commits

From:	Jason Zaman <gentoo@×××××××××.com>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] proj/hardened-refpolicy:next commit in: policy/modules/contrib/
Date:	Thu, 29 Jan 2015 08:38:28
Message-Id:	`1422520373.65e9be2b0d0dc77520bde9590a8d9d5c04b68602.perfinion@gentoo`

1	commit: 65e9be2b0d0dc77520bde9590a8d9d5c04b68602
2	Author: Jason Zaman <jason <AT> perfinion <DOT> com>
3	AuthorDate: Tue Jan 20 14:23:22 2015 +0000
4	Commit: Jason Zaman <gentoo <AT> perfinion <DOT> com>
5	CommitDate: Thu Jan 29 08:32:53 2015 +0000
6	URL: http://sources.gentoo.org/gitweb/?p=proj/hardened-refpolicy.git;a=commit;h=65e9be2b
7
8	Introduce networkmanager_rw_rawip_sockets
9
10	---
11	policy/modules/contrib/networkmanager.if \| 20 ++++++++++++++++++++
12	1 file changed, 20 insertions(+)
13
14	diff --git a/policy/modules/contrib/networkmanager.if b/policy/modules/contrib/networkmanager.if
15	index 5aced8c..b512ce0 100644
16	--- a/policy/modules/contrib/networkmanager.if
17	+++ b/policy/modules/contrib/networkmanager.if
18	@@ -381,3 +381,23 @@ interface(`networkmanager_run_wpa_cli',`
19	networkmanager_domtrans_wpa_cli($1)
20	role $2 types wpa_cli_t;
21	')
22	+
23	+# Gentoo specific interfaces follow but not allowed ifdef
24	+
25	+########################################
26	+## <summary>
27	+## Read and write networkmanager rawip sockets.
28	+## </summary>
29	+## <param name="domain">
30	+## <summary>
31	+## Domain allowed access.
32	+## </summary>
33	+## </param>
34	+#
35	+interface(`networkmanager_rw_rawip_sockets',`
36	+ gen_require(`
37	+ type NetworkManager_t;
38	+ ')
39	+
40	+ allow $1 NetworkManager_t:rawip_socket { read write };
41	+')