From d5d299563e5500424f5082fbba0e83f239c1986e Mon Sep 17 00:00:00 2001
From: Nicolas PARLANT <nicolas.parlant@parhuet.fr>
Date: Fri, 18 Oct 2024 22:50:39 +0200
Subject: [PATCH] netutils: /usr/bin/ss merged-usr

Signed-off-by: Nicolas PARLANT <nicolas.parlant@parhuet.fr>
Closes: https://github.com/gentoo/hardened-refpolicy/pull/3
Signed-off-by: Kenton Groombridge <concord@gentoo.org>
---
 policy/modules/admin/netutils.fc | 1 +
 1 file changed, 1 insertion(+)

diff --git a/policy/modules/admin/netutils.fc b/policy/modules/admin/netutils.fc
index c8f5dd950..6027da91f 100644
--- a/policy/modules/admin/netutils.fc
+++ b/policy/modules/admin/netutils.fc
@@ -8,6 +8,7 @@
 /usr/bin/nmap		--	gen_context(system_u:object_r:traceroute_exec_t,s0)
 /usr/bin/ping.* 	--	gen_context(system_u:object_r:ping_exec_t,s0)
 /usr/bin/send_arp	--	gen_context(system_u:object_r:ping_exec_t,s0)
+/usr/bin/ss		--	gen_context(system_u:object_r:ss_exec_t,s0)
 /usr/bin/tcpdump	--	gen_context(system_u:object_r:netutils_exec_t,s0)
 /usr/bin/tracepath.*	--	gen_context(system_u:object_r:traceroute_exec_t,s0)
 /usr/bin/traceroute.*	--	gen_context(system_u:object_r:traceroute_exec_t,s0)