diff --git a/Changelog b/Changelog index 6073634bf..d2102a1a2 100644 --- a/Changelog +++ b/Changelog @@ -1,3 +1,4 @@ +- Add dccp_socket object class which was added in kernel 2.6.20. - Patch for prelink relabefrom it's temp files from Dan Walsh. - Patch for capability fix for auditd and networking fix for syslogd from Dan Walsh. diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors index 4848d2591..d45ad96f2 100644 --- a/policy/flask/access_vectors +++ b/policy/flask/access_vectors @@ -185,6 +185,8 @@ class node rawip_recv rawip_send enforce_dest + dccp_recv + dccp_send } class netif @@ -195,6 +197,8 @@ class netif udp_send rawip_recv rawip_send + dccp_recv + dccp_send } class netlink_socket @@ -637,3 +641,10 @@ class context translate contains } + +class dccp_socket +inherits socket +{ + node_bind + name_connect +} diff --git a/policy/flask/security_classes b/policy/flask/security_classes index 53c0cf154..788d85482 100644 --- a/policy/flask/security_classes +++ b/policy/flask/security_classes @@ -95,4 +95,6 @@ class key class context # userspace +class dccp_socket + # FLASK