1 type ip_link_add, domain; 2 type ip_link_add_exec, exec_type, vendor_file_type, file_type; 3 4 init_daemon_domain(ip_link_add) 5 6 allow ip_link_add self:capability { net_admin net_raw sys_module }; 7 allow ip_link_add self:udp_socket { create ioctl }; 8 allow ip_link_add self:netlink_route_socket { bind create nlmsg_write read write }; 9 10 allow ip_link_add kernel:system module_request; 11
