Allow dirsrv_t to read netlink socket

author Miroslav Grepl <mgrepl@redhat.com>

Tue, 18 Oct 2011 20:32:07 +0000 (20:32 +0000)

committer Miroslav Grepl <mgrepl@redhat.com>

Tue, 18 Oct 2011 20:32:07 +0000 (20:32 +0000)
author Miroslav Grepl <mgrepl@redhat.com>
Tue, 18 Oct 2011 20:32:07 +0000 (20:32 +0000)
committer Miroslav Grepl <mgrepl@redhat.com>
Tue, 18 Oct 2011 20:32:07 +0000 (20:32 +0000)
diff --git a/policy/modules/services/dirsrv.te b/policy/modules/services/dirsrv.te

index a5afe38796f84e73c2797eabe3ea53e086d0e866..ff2ba384cf2d577a76b1c862d84e601a418bbbdf 100644 (file)
--- a/policy/modules/services/dirsrv.te
+++ b/policy/modules/services/dirsrv.te
@@ -55,6 +55,7 @@ allow dirsrv_t self:capability { sys_nice setuid setgid fsetid chown dac_overrid
  allow dirsrv_t self:fifo_file rw_fifo_file_perms;
  allow dirsrv_t self:sem create_sem_perms;
  allow dirsrv_t self:tcp_socket create_stream_socket_perms;
+allow dirsrv_t self:netlink_route_socket r_netlink_socket_perms;
  
  manage_files_pattern(dirsrv_t, dirsrv_tmpfs_t, dirsrv_tmpfs_t)
  fs_tmpfs_filetrans(dirsrv_t, dirsrv_tmpfs_t, file)
author	Miroslav Grepl <mgrepl@redhat.com>
	Tue, 18 Oct 2011 20:32:07 +0000 (20:32 +0000)
committer	Miroslav Grepl <mgrepl@redhat.com>
	Tue, 18 Oct 2011 20:32:07 +0000 (20:32 +0000)