[selinux-policy: 1660/3172] add dccp_socket object class
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 21:28:33 UTC 2010
commit a715dc09957215fb90121ec5441fa9591dbc84b3
Author: Chris PeBenito <cpebenito at tresys.com>
Date: Mon Feb 26 15:39:59 2007 +0000
add dccp_socket object class
Changelog | 1 +
policy/flask/access_vectors | 11 +++++++++++
policy/flask/security_classes | 2 ++
3 files changed, 14 insertions(+), 0 deletions(-)
---
diff --git a/Changelog b/Changelog
index 6073634..d2102a1 100644
--- a/Changelog
+++ b/Changelog
@@ -1,3 +1,4 @@
+- Add dccp_socket object class which was added in kernel 2.6.20.
- Patch for prelink relabefrom it's temp files from Dan Walsh.
- Patch for capability fix for auditd and networking fix for syslogd from
Dan Walsh.
diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors
index 4848d25..d45ad96 100644
--- a/policy/flask/access_vectors
+++ b/policy/flask/access_vectors
@@ -185,6 +185,8 @@ class node
rawip_recv
rawip_send
enforce_dest
+ dccp_recv
+ dccp_send
}
class netif
@@ -195,6 +197,8 @@ class netif
udp_send
rawip_recv
rawip_send
+ dccp_recv
+ dccp_send
}
class netlink_socket
@@ -637,3 +641,10 @@ class context
translate
contains
}
+
+class dccp_socket
+inherits socket
+{
+ node_bind
+ name_connect
+}
diff --git a/policy/flask/security_classes b/policy/flask/security_classes
index 53c0cf1..788d854 100644
--- a/policy/flask/security_classes
+++ b/policy/flask/security_classes
@@ -95,4 +95,6 @@ class key
class context # userspace
+class dccp_socket
+
# FLASK
More information about the scm-commits
mailing list