misc: selinux fixes (packet_socket r/w) - vpp

diff options

author	Martin Millnert <martin@millnert.se>	2020-09-11 01:02:26 +0200
committer	Andrew Yourtchenko <ayourtch@gmail.com>	2020-09-15 08:35:15 +0000
commit	cb94290d5f5aeec35ea3015ce19ac246b8479046 (patch)
tree	00f4704777ff329945f281b2908460068f0b5ed9 /src
parent	6f1a86f1874261817618da086c7158b7646efebb (diff)

misc: selinux fixes (packet_socket r/w)

vpp-20.05 on up-to-date Centos 7.8 host with enforcing SELinux fails to create a host-interface due to two missing SELinux-permissions: vpp_t self:packet_socket { read write } This simple patch adds these two permissions. Tested successfully on local installation. The steps to reproduce: $ ip link add vpeer-host type veth peer name vpeer-vpp vpp# create host-interface name vpeer-vpp create host-interface: Permission denied (errno 13) [...] $ semodule -i vpp-packet-socket.pp vpp# create host-interface name vpeer-vpp host-vpeer-vpp Type: fix Ticket: VPP-1931 Change-Id: I2b3d92b27b9a9f26aa1c85af2946b15e83e27944 Signed-off-by: Martin Millnert <martin@millnert.se> (cherry picked from commit 68849350c56b0258d21fc906b09df71a1951f694)

Diffstat (limited to 'src')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: