2b6966d7bc
Add new test suite for semanage_port_* functions. The test suite aims for line coverage and covers expected usage of functions. The test suite uses custom semanage store and policy written in CIL, it does not require running on SELinux enabled system. Signed-off-by: Jan Zarsky <jzarsky@redhat.com>
27 lines
822 B
Text
27 lines
822 B
Text
(typeattribute cil_gen_require)
|
|
(roleattribute cil_gen_require)
|
|
(handleunknown allow)
|
|
(mls true)
|
|
(policycap open_perms)
|
|
(sid security)
|
|
(sidorder (security))
|
|
(sensitivity s0)
|
|
(sensitivityorder (s0))
|
|
(user system_u)
|
|
(userrole system_u object_r)
|
|
(userlevel system_u (s0))
|
|
(userrange system_u ((s0) (s0)))
|
|
(role object_r)
|
|
(roletype object_r first_port_t)
|
|
(roletype object_r second_port_t)
|
|
(roletype object_r third_port_t)
|
|
(type first_port_t)
|
|
(type second_port_t)
|
|
(type third_port_t)
|
|
(sidcontext security (system_u object_r first_port_t ((s0) (s0))))
|
|
(class file (open))
|
|
(classorder (file))
|
|
(allow first_port_t self (file (open)))
|
|
(portcon tcp 80 (system_u object_r first_port_t ((s0) (s0))))
|
|
(portcon udp (1 1023) (system_u object_r second_port_t ((s0) (s0))))
|
|
(portcon tcp 12345 (system_u object_r third_port_t ((s0) (s0))))
|