X-Git-Url: https://git.camperquake.de/gitweb.cgi?a=blobdiff_plain;f=ts3%2Fts3.te;h=4afdf060cf291d4395c38c03dc00001667790c85;hb=refs%2Fheads%2Fmaster;hp=95dd7a3ee8a622633b1e4ec2f725e19f4c1330fa;hpb=e2c43ce175ce15856f49e04458513569bd7b2d92;p=selinux.git

diff --git a/ts3/ts3.te b/ts3/ts3.te
index 95dd7a3..4afdf06 100644
--- a/ts3/ts3.te
+++ b/ts3/ts3.te
@@ -1,4 +1,4 @@
-policy_module(ts3, 0.1.22)
+policy_module(ts3, 0.1.29)
 
 # File context for the executable process
 type ts3_t;
@@ -10,6 +10,7 @@ files_type(ts3_rw_t)
 type ts3_ro_t;
 files_type(ts3_ro_t)
 
+init_domain(ts3_t, ts3_exec_t)
 init_daemon_domain(ts3_t, ts3_exec_t)
 
 corenet_udp_sendrecv_generic_port(ts3_t)
@@ -22,11 +23,16 @@ corenet_tcp_bind_generic_node(ts3_t)
 allow ts3_t self:tcp_socket { create_stream_socket_perms connected_stream_socket_perms };
 
 read_files_pattern(ts3_t, ts3_ro_t, ts3_ro_t)
+list_dirs_pattern(ts3_t, ts3_ro_t, ts3_ro_t)
+mmap_exec_files_pattern(ts3_t, ts3_ro_t, ts3_ro_t)
 
 manage_files_pattern(ts3_t, ts3_rw_t, ts3_rw_t)
 manage_dirs_pattern(ts3_t, ts3_rw_t, ts3_rw_t)
+mmap_exec_files_pattern(ts3_t, ts3_rw_t, ts3_rw_t)
 setattr_files_pattern(ts3_t, ts3_rw_t, ts3_rw_t)
 
+mmap_exec_files_pattern(ts3_t, tmpfs_t, tmpfs_t)
+
 sysnet_dns_name_resolve(ts3_t)
 
 # Needed to load shared libraries