diff options
Diffstat (limited to 'policy/modules/system/init.if')
-rw-r--r-- | policy/modules/system/init.if | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/policy/modules/system/init.if b/policy/modules/system/init.if index 24be1a7a7..5d720ffc3 100644 --- a/policy/modules/system/init.if +++ b/policy/modules/system/init.if @@ -1165,6 +1165,26 @@ interface(`init_rw_stream_sockets',` ######################################## ## <summary> +## Allow the specified domain to set the +## attributes of init's unix domain stream +## sockets. +## </summary> +## <param name="domain"> +## <summary> +## Domain allowed access. +## </summary> +## </param> +# +interface(`init_setattr_stream_sockets',` + gen_require(` + type init_t; + ') + + allow $1 init_t:unix_stream_socket setattr; +') + +######################################## +## <summary> ## Do not audit attempts to search init keys. ## </summary> ## <param name="domain"> |