trunk: 3 patches from dan.

author: Chris PeBenito <cpebenito@tresys.com> 2007-11-05 19:35:08 +0000
committer: Chris PeBenito <cpebenito@tresys.com> 2007-11-05 19:35:08 +0000
commit: eaed904cd5e356973a48e59d89cb4cf214ab4202 (patch)
tree: 0362a9ce6fae8432536d2a0abe14fd1e19b5fd0b /policy/modules/system/iptables.te
parent: 8bdb48da2eb449a1fd998c9955107ada5ca110d3 (diff)
1 files changed, 6 insertions, 1 deletions
diff --git a/policy/modules/system/iptables.te b/policy/modules/system/iptables.te
index c72f4b98..b8dee5d0 100644
--- a/policy/modules/system/iptables.te
+++ b/policy/modules/system/iptables.te
@@ -1,5 +1,5 @@
 
-policy_module(iptables,1.5.1)
+policy_module(iptables,1.5.2)
 
 ########################################
 #
@@ -64,6 +64,7 @@ init_use_fds(iptables_t)
 init_use_script_ptys(iptables_t)
 # to allow rules to be saved on reboot:
 init_rw_script_tmp_files(iptables_t)
+init_rw_script_stream_sockets(iptables_t)
 
 libs_use_ld_so(iptables_t)
 libs_use_shared_libs(iptables_t)
@@ -102,6 +103,10 @@ optional_policy(`
 ')
 
 optional_policy(`
+	rhgb_dontaudit_use_ptys(iptables_t)
+')
+
+optional_policy(`
 	seutil_sigchld_newrole(iptables_t)
 ')
author	Chris PeBenito <cpebenito@tresys.com>	2007-11-05 19:35:08 +0000
committer	Chris PeBenito <cpebenito@tresys.com>	2007-11-05 19:35:08 +0000
commit	eaed904cd5e356973a48e59d89cb4cf214ab4202 (patch)
tree	0362a9ce6fae8432536d2a0abe14fd1e19b5fd0b /policy/modules/system/iptables.te
parent	8bdb48da2eb449a1fd998c9955107ada5ca110d3 (diff)