[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/system/

Jason Zaman Tue, 15 Jul 2025 01:06:01 -0700

commit:     9a5633d3c88824d2d09c12479b23b97a052b5cf4
Author:     Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Tue Jun 24 15:57:28 2025 +0000
Commit:     Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Tue Jul 15 08:04:54 2025 +0000
URL:        
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=9a5633d3


iptables: allow incus_stream_connect_daemon

Signed-off-by: Marc Schiffbauer <mschiff <AT> gentoo.org>
Signed-off-by: Jason Zaman <perfinion <AT> gentoo.org>

 policy/modules/system/iptables.te | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/policy/modules/system/iptables.te 
b/policy/modules/system/iptables.te
index 7b0ef9df3..639052f88 100644
--- a/policy/modules/system/iptables.te
+++ b/policy/modules/system/iptables.te
@@ -132,6 +132,10 @@ optional_policy(`
        firstboot_rw_pipes(iptables_t)
 ')
 
+optional_policy(`
+       incus_stream_connect_daemon(iptables_t)
+')
+
 optional_policy(`
        # apply firewall rules from multus
        kubernetes_rw_container_engine_fifo_files(iptables_t)

[gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/system/

Reply via email to