53 lines
2.1 KiB
Diff
53 lines
2.1 KiB
Diff
diff --git secilc-2.5/Android.mk secilc-2.5/Android.mk
|
|
index 3dd9023..6c7b9d3 100644
|
|
--- secilc-2.5/Android.mk
|
|
+++ secilc-2.5/Android.mk
|
|
@@ -6,10 +6,6 @@ common_cflags := \
|
|
-Wall -Wshadow -O2 \
|
|
-pipe -fno-strict-aliasing \
|
|
|
|
-ifeq ($(HOST_OS), darwin)
|
|
-common_cflags += -DDARWIN
|
|
-endif
|
|
-
|
|
common_includes := \
|
|
$(LOCAL_PATH)/../libsepol/cil/include/ \
|
|
$(LOCAL_PATH)/../libsepol/include/ \
|
|
diff --git secilc-2.5/ChangeLog secilc-2.5/ChangeLog
|
|
index a803f35..cddfd81 100644
|
|
--- secilc-2.5/ChangeLog
|
|
+++ secilc-2.5/ChangeLog
|
|
@@ -1,3 +1,5 @@
|
|
+ * Add documentation and test rule for portcon dccp protocol, from Richard Haines
|
|
+
|
|
2.5 2016-02-23
|
|
* Convert DocBook documentation into github markdown, from Yuli Khodorkovskiy
|
|
* Add documentation for neverallowx rules, from Steve Lawrence
|
|
diff --git secilc-2.5/docs/cil_network_labeling_statements.md secilc-2.5/docs/cil_network_labeling_statements.md
|
|
index 183b350..b06dbcc 100644
|
|
--- secilc-2.5/docs/cil_network_labeling_statements.md
|
|
+++ secilc-2.5/docs/cil_network_labeling_statements.md
|
|
@@ -155,7 +155,7 @@ These examples show named and anonymous [`nodecon`](cil_network_labeling_stateme
|
|
portcon
|
|
-------
|
|
|
|
-Label a udp or tcp port.
|
|
+Label a udp, tcp or dccp port.
|
|
|
|
**Statement definition:**
|
|
|
|
@@ -175,7 +175,7 @@ Label a udp or tcp port.
|
|
</tr>
|
|
<tr class="even">
|
|
<td align="left"><p><code>protocol</code></p></td>
|
|
-<td align="left"><p>The protocol keyword <code>tcp</code> or <code>udp</code>.</p></td>
|
|
+<td align="left"><p>The protocol keyword <code>tcp</code>, <code>udp</code> or <code>dccp</code>.</p></td>
|
|
</tr>
|
|
<tr class="odd">
|
|
<td align="left"><p><code>port |</code></p>
|
|
@@ -199,3 +199,4 @@ These examples show named and anonymous [`portcon`](cil_network_labeling_stateme
|
|
(portcon tcp 3333 (unconfined.user object_r unconfined.object levelrange_1))
|
|
(portcon udp 4444 (unconfined.user object_r unconfined.object ((s0) level_2)))
|
|
(portcon tcp (2000 20000) (unconfined.user object_r unconfined.object (systemlow level_3)))
|
|
+ (portcon dccp (6840 6880) (unconfined.user object_r unconfined.object ((s0) level_2)))
|