On Thu, 2008-02-28 at 10:09 -0500, Eric Paris wrote:
> Add new permissions for open permissions. This patch does not enable or
> make use of those new permissions. I'll leave that for a future patch
> from the policy people.
Merged.
> diff -Naupr serefpolicy-3.3.0.orig/policy/flask/access_vectors serefpolicy-3.3.0/policy/flask/access_vectors
> --- serefpolicy-3.3.0.orig/policy/flask/access_vectors 2008-02-25 17:00:34.000000000 -0500
> +++ serefpolicy-3.3.0/policy/flask/access_vectors 2008-02-26 17:36:05.000000000 -0500
> @@ -125,6 +125,7 @@ inherits file
> reparent
> search
> rmdir
> + open
> }
>
> class file
> @@ -133,6 +134,7 @@ inherits file
> execute_no_trans
> entrypoint
> execmod
> + open
> }
>
> class lnk_file
> @@ -144,16 +146,23 @@ inherits file
> execute_no_trans
> entrypoint
> execmod
> + open
> }
>
> class blk_file
> inherits file
> +{
> + open
> +}
>
> class sock_file
> inherits file
>
> class fifo_file
> inherits file
> +{
> + open
> +}
>
> class fd
> {
>
>
>
> --
> This message was distributed to subscribers of the selinux mailing list.
> If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
> the words "unsubscribe selinux" without quotes as the message.
--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
