summaryrefslogtreecommitdiffstats
path: root/sepolicy/dhcpclient.te
blob: 7aeb2f4347fc608ffb5040c6c5fbed45779f5078 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18

# DHCP client
type dhcpclient, domain;
type dhcpclient_exec, exec_type, vendor_file_type, file_type;

init_daemon_domain(dhcpclient)
net_domain(dhcpclient)

dontaudit dhcpclient kernel:system module_request;
allow dhcpclient self:capability { net_admin net_raw };
allow dhcpclient self:udp_socket create;
allow dhcpclient self:netlink_route_socket { write nlmsg_write };
allow dhcpclient varrun_file:dir search;
allow dhcpclient self:packet_socket { create bind write read };
allowxperm dhcpclient self:udp_socket ioctl { SIOCSIFFLAGS
                                              SIOCSIFADDR
                                              SIOCSIFNETMASK
                                              SIOCSIFMTU
                                              SIOCGIFHWADDR };
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-21 20:35:12 +0000