Boolean passenger_can_connect_docker allows connections to newly created docker_port_t which is not yet defined in RHEL7/Fedora. This can be used when users starts Docker on TCP (defaults to UNIX sockets). IANA assigned 2375 and 2376 ports for http/https communication on 2015-01-09.
Fixes #8989 - Add docker_port_t port and boolean
Boolean passenger_can_connect_docker allows connections to newly created
docker_port_t which is not yet defined in RHEL7/Fedora. This can be used
when users starts Docker on TCP (defaults to UNIX sockets). IANA assigned
2375 and 2376 ports for http/https communication on 2015-01-09.
Denial:
type=AVC msg=audit(1421352630.245:15331): avc: denied { name_connect } for
pid=4803 comm="ruby" dest=2375 scontext=unconfined_u:system_r:passenger_t:s0
tcontext=system_u:object_r:port_t:s0 tclass=tcp_socket