fix can_network_server expansion

This commit is contained in:
Chris PeBenito 2005-09-16 17:28:10 +00:00
parent 40adb57f47
commit a47ea60ca9
1 changed files with 7 additions and 1 deletions

View File

@ -373,7 +373,9 @@ sysnet_read_config($1)
# can_network_server():
#
allow $1 self:tcp_socket create_stream_socket_perms;
allow $1 self:udp_socket { connect };
base_can_network($1, tcp, `$2')
base_can_network($1, udp, `$2')
#
# can_network_server_tcp():
@ -754,11 +756,15 @@ kernel_read_kernel_sysctl($1_t)
kernel_read_system_state($1_t)
kernel_read_network_state($1_t)
corenet_tcp_sendrecv_all_if($1_t)
corenet_udp_sendrecv_all_if($1_t)
corenet_raw_sendrecv_all_if($1_t)
corenet_tcp_sendrecv_all_nodes($1_t)
corenet_udp_sendrecv_all_nodes($1_t)
corenet_raw_sendrecv_all_nodes($1_t)
corenet_tcp_bind_all_nodes($1_t)
corenet_tcp_sendrecv_all_ports($1_t)
corenet_udp_sendrecv_all_ports($1_t)
corenet_tcp_bind_all_nodes($1_t)
corenet_udp_bind_all_nodes($1_t)
dev_read_urand($1_t)
fs_getattr_xattr_fs($1_t)
files_read_etc_files($1_t)