dnsmasq wants to read proc_net_t

author Dan Walsh <dwalsh@redhat.com>

Wed, 23 Nov 2011 17:57:40 +0000 (12:57 -0500)

committer Dan Walsh <dwalsh@redhat.com>

Wed, 23 Nov 2011 17:57:40 +0000 (12:57 -0500)
author Dan Walsh <dwalsh@redhat.com>
Wed, 23 Nov 2011 17:57:40 +0000 (12:57 -0500)
committer Dan Walsh <dwalsh@redhat.com>
Wed, 23 Nov 2011 17:57:40 +0000 (12:57 -0500)
diff --git a/policy/modules/services/dnsmasq.te b/policy/modules/services/dnsmasq.te

index 854222509ac3a38ec08bf5fef59b01fc4d7e3646..b1ea136ad2230b2d6ddce812b0ef9a12d110d2f9 100644 (file)
--- a/policy/modules/services/dnsmasq.te
+++ b/policy/modules/services/dnsmasq.te
@@ -57,6 +57,7 @@ files_pid_filetrans(dnsmasq_t, dnsmasq_var_run_t, { dir file })
  
  kernel_read_kernel_sysctls(dnsmasq_t)
  kernel_read_system_state(dnsmasq_t)
+kernel_read_network_state(dnsmasq_t)
  kernel_request_load_module(dnsmasq_t)
  
  corenet_all_recvfrom_unlabeled(dnsmasq_t)
author	Dan Walsh <dwalsh@redhat.com>
	Wed, 23 Nov 2011 17:57:40 +0000 (12:57 -0500)
committer	Dan Walsh <dwalsh@redhat.com>
	Wed, 23 Nov 2011 17:57:40 +0000 (12:57 -0500)