Add new permissions for open permissions. This patch does not enable or
make use of those new permissions. I'll leave that for a future patch
from the policy people.
-Eric
---
diff -Naupr serefpolicy-3.3.0.orig/policy/flask/access_vectors serefpolicy-3.3.0/policy/flask/access_vectors
--- serefpolicy-3.3.0.orig/policy/flask/access_vectors 2008-02-25 17:00:34.000000000 -0500
+++ serefpolicy-3.3.0/policy/flask/access_vectors 2008-02-26 17:36:05.000000000 -0500
@@ -125,6 +125,7 @@ inherits file
reparent
search
rmdir
+ open
}
class file
@@ -133,6 +134,7 @@ inherits file
execute_no_trans
entrypoint
execmod
+ open
}
class lnk_file
@@ -144,16 +146,23 @@ inherits file
execute_no_trans
entrypoint
execmod
+ open
}
class blk_file
inherits file
+{
+ open
+}
class sock_file
inherits file
class fifo_file
inherits file
+{
+ open
+}
class fd
{
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
