summaryrefslogtreecommitdiff
path: root/policy/modules/apps/uml.te
diff options
context:
space:
mode:
Diffstat (limited to 'policy/modules/apps/uml.te')
-rw-r--r--policy/modules/apps/uml.te6
1 files changed, 6 insertions, 0 deletions
diff --git a/policy/modules/apps/uml.te b/policy/modules/apps/uml.te
index 05e871c8..a677710b 100644
--- a/policy/modules/apps/uml.te
+++ b/policy/modules/apps/uml.te
@@ -60,6 +60,7 @@ allow uml_t self:unix_dgram_socket create_socket_perms;
# Use the network.
allow uml_t self:tcp_socket create_stream_socket_perms;
allow uml_t self:udp_socket create_socket_perms;
+allow uml_t self:tun_socket create;
# for mconsole
allow uml_t self:unix_dgram_socket sendto;
@@ -135,11 +136,16 @@ seutil_use_newrole_fds(uml_t)
sysnet_read_config(uml_t)
userdom_use_user_terminals(uml_t)
+userdom_attach_admin_tun_iface(uml_t)
optional_policy(`
nis_use_ypbind(uml_t)
')
+optional_policy(`
+ virt_attach_tun_iface(uml_t)
+')
+
########################################
#
# Local policy
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-21 17:50:50 +0000