38 lines
1.7 KiB
Diff
38 lines
1.7 KiB
Diff
|
diff --git secilc-2.5/ChangeLog secilc-2.5/ChangeLog
|
||
|
index a803f35..cddfd81 100644
|
||
|
--- secilc-2.5/ChangeLog
|
||
|
+++ secilc-2.5/ChangeLog
|
||
|
@@ -1,3 +1,5 @@
|
||
|
+ * Add documentation and test rule for portcon dccp protocol, from Richard Haines
|
||
|
+
|
||
|
2.5 2016-02-23
|
||
|
* Convert DocBook documentation into github markdown, from Yuli Khodorkovskiy
|
||
|
* Add documentation for neverallowx rules, from Steve Lawrence
|
||
|
diff --git secilc-2.5/docs/cil_network_labeling_statements.md secilc-2.5/docs/cil_network_labeling_statements.md
|
||
|
index 183b350..b06dbcc 100644
|
||
|
--- secilc-2.5/docs/cil_network_labeling_statements.md
|
||
|
+++ secilc-2.5/docs/cil_network_labeling_statements.md
|
||
|
@@ -155,7 +155,7 @@ These examples show named and anonymous [`nodecon`](cil_network_labeling_stateme
|
||
|
portcon
|
||
|
-------
|
||
|
|
||
|
-Label a udp or tcp port.
|
||
|
+Label a udp, tcp or dccp port.
|
||
|
|
||
|
**Statement definition:**
|
||
|
|
||
|
@@ -175,7 +175,7 @@ Label a udp or tcp port.
|
||
|
</tr>
|
||
|
<tr class="even">
|
||
|
<td align="left"><p><code>protocol</code></p></td>
|
||
|
-<td align="left"><p>The protocol keyword <code>tcp</code> or <code>udp</code>.</p></td>
|
||
|
+<td align="left"><p>The protocol keyword <code>tcp</code>, <code>udp</code> or <code>dccp</code>.</p></td>
|
||
|
</tr>
|
||
|
<tr class="odd">
|
||
|
<td align="left"><p><code>port |</code></p>
|
||
|
@@ -199,3 +199,4 @@ These examples show named and anonymous [`portcon`](cil_network_labeling_stateme
|
||
|
(portcon tcp 3333 (unconfined.user object_r unconfined.object levelrange_1))
|
||
|
(portcon udp 4444 (unconfined.user object_r unconfined.object ((s0) level_2)))
|
||
|
(portcon tcp (2000 20000) (unconfined.user object_r unconfined.object (systemlow level_3)))
|
||
|
+ (portcon dccp (6840 6880) (unconfined.user object_r unconfined.object ((s0) level_2)))
|