From 549180e87451bd8a0fb79ddefb82dd7c486bb2c2 Mon Sep 17 00:00:00 2001
From: Chris PeBenito <cpebenito@tresys.com>
Date: Mon, 25 Apr 2005 20:13:45 +0000
Subject: [PATCH] initial commit

---
 refpolicy/policy/modules/system/sysnetwork.if | 14 ++++++++++++++
 refpolicy/policy/modules/system/sysnetwork.te |  2 ++
 2 files changed, 16 insertions(+)
 create mode 100644 refpolicy/policy/modules/system/sysnetwork.if
 create mode 100644 refpolicy/policy/modules/system/sysnetwork.te

diff --git a/refpolicy/policy/modules/system/sysnetwork.if b/refpolicy/policy/modules/system/sysnetwork.if
new file mode 100644
index 000000000..82f4d3d3c
--- /dev/null
+++ b/refpolicy/policy/modules/system/sysnetwork.if
@@ -0,0 +1,14 @@
+########################################
+#
+# sysnetwork_read_network_config(domain,[`optional'])
+#
+define(`sysnetwork_read_network_config',`
+requires_block_template(sysnetwork_read_network_config_depend,$2)
+# FIXME: allow $1 etc_t:dir search;
+allow $1 net_conf_t:file { getattr read };
+')
+
+define(`sysnetwork_read_network_config_depend',`
+type net_conf_t;
+class file { getattr read };
+')
diff --git a/refpolicy/policy/modules/system/sysnetwork.te b/refpolicy/policy/modules/system/sysnetwork.te
new file mode 100644
index 000000000..c60908ab0
--- /dev/null
+++ b/refpolicy/policy/modules/system/sysnetwork.te
@@ -0,0 +1,2 @@
+type net_conf_t alias resolv_conf_t;
+files_make_file(net_conf_t)