* [refpolicy] [PATCH] Add "binder" security class and access vectors
@ 2015-05-06 16:31 Laurent Bigonville
2015-05-08 12:20 ` Christopher J. PeBenito
0 siblings, 1 reply; 2+ messages in thread
From: Laurent Bigonville @ 2015-05-06 16:31 UTC (permalink / raw)
To: refpolicy
From: Laurent Bigonville <bigon@bigon.be>
---
policy/flask/access_vectors | 8 ++++++++
policy/flask/security_classes | 2 ++
2 files changed, 10 insertions(+)
diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors
index bea72a0..97665b4 100644
--- a/policy/flask/access_vectors
+++ b/policy/flask/access_vectors
@@ -844,6 +844,14 @@ inherits socket
attach_queue
}
+class binder
+{
+ impersonate
+ call
+ set_context_mgr
+ transfer
+}
+
class x_pointer
inherits x_device
diff --git a/policy/flask/security_classes b/policy/flask/security_classes
index c9cf486..ca7eb41 100644
--- a/policy/flask/security_classes
+++ b/policy/flask/security_classes
@@ -123,6 +123,8 @@ class kernel_service
class tun_socket
+class binder
+
# Still More SE-X Windows stuff
class x_pointer # userspace
class x_keyboard # userspace
--
2.1.4
^ permalink raw reply related [flat|nested] 2+ messages in thread
* [refpolicy] [PATCH] Add "binder" security class and access vectors
2015-05-06 16:31 [refpolicy] [PATCH] Add "binder" security class and access vectors Laurent Bigonville
@ 2015-05-08 12:20 ` Christopher J. PeBenito
0 siblings, 0 replies; 2+ messages in thread
From: Christopher J. PeBenito @ 2015-05-08 12:20 UTC (permalink / raw)
To: refpolicy
On 5/6/2015 12:31 PM, Laurent Bigonville wrote:
> From: Laurent Bigonville <bigon@bigon.be>
>
> ---
> policy/flask/access_vectors | 8 ++++++++
> policy/flask/security_classes | 2 ++
> 2 files changed, 10 insertions(+)
>
> diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors
> index bea72a0..97665b4 100644
> --- a/policy/flask/access_vectors
> +++ b/policy/flask/access_vectors
> @@ -844,6 +844,14 @@ inherits socket
> attach_queue
> }
>
> +class binder
> +{
> + impersonate
> + call
> + set_context_mgr
> + transfer
> +}
> +
> class x_pointer
> inherits x_device
>
> diff --git a/policy/flask/security_classes b/policy/flask/security_classes
> index c9cf486..ca7eb41 100644
> --- a/policy/flask/security_classes
> +++ b/policy/flask/security_classes
> @@ -123,6 +123,8 @@ class kernel_service
>
> class tun_socket
>
> +class binder
> +
> # Still More SE-X Windows stuff
> class x_pointer # userspace
> class x_keyboard # userspace
Merged.
--
Chris PeBenito
Tresys Technology, LLC
www.tresys.com | oss.tresys.com
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2015-05-08 12:20 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2015-05-06 16:31 [refpolicy] [PATCH] Add "binder" security class and access vectors Laurent Bigonville
2015-05-08 12:20 ` Christopher J. PeBenito
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.