diff options
| -rw-r--r-- | pki/base/selinux/src/pki.if | 4 | ||||
| -rw-r--r-- | pki/base/selinux/src/pki.te | 2 |
2 files changed, 5 insertions, 1 deletions
diff --git a/pki/base/selinux/src/pki.if b/pki/base/selinux/src/pki.if index cba0f91ac..317fb22b8 100644 --- a/pki/base/selinux/src/pki.if +++ b/pki/base/selinux/src/pki.if @@ -130,6 +130,7 @@ template(`pki_ca_template',` corecmd_search_bin($1_t) dev_list_sysfs($1_t) + dev_read_sysfs($1_t) dev_read_rand($1_t) dev_read_urand($1_t) @@ -196,6 +197,9 @@ template(`pki_ca_template',` #reverse proxy corenet_tcp_connect_dogtag_port($1_t) + #connect to ldap + corenet_tcp_connect_ldap_port($1_t) + ') ######################################## diff --git a/pki/base/selinux/src/pki.te b/pki/base/selinux/src/pki.te index 2261af4b3..3d9a04832 100644 --- a/pki/base/selinux/src/pki.te +++ b/pki/base/selinux/src/pki.te @@ -1,4 +1,4 @@ -policy_module(pki,1.0.25) +policy_module(pki,1.0.26) attribute pki_ca_config; attribute pki_ca_executable; |