blob: 1a376dd6d95a860a34eeabfb52dd5e7b0a71cb5a (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
;; SPDX-FileCopyrightText: © 2025 Dominick Grift <dominick.grift@defensec.nl>
;; SPDX-License-Identifier: Unlicense
(handleunknown allow)
(mls true)
(policycap "always_check_network")
(policycap "cgroup_seclabel")
(policycap "extended_socket_class")
(policycap "genfs_seclabel_symlinks")
(policycap "network_peer_controls")
(policycap "nnp_nosuid_transition")
(policycap "open_perms")
(policycap "ioctl_skip_cloexec")
(policycap "userspace_initial_context")
;; (policycap "netlink_xperm") ;; Requires Linux 6.13/SELinux 3.8
|
