diff options
author | Laurent Bigonville <bigon@bigon.be> | 2015-05-06 18:31:28 +0200 |
---|---|---|
committer | Jason Zaman <jason@perfinion.com> | 2015-05-22 23:16:43 +0400 |
commit | f160686cb9df39cb59dda8c3178fd70f9c4a1b48 (patch) | |
tree | 6304ba38479ae1816d317a80940d727a45b8f901 /policy/flask | |
parent | Module version bump for debufs mount point fc entry from Laurent Bigonville. (diff) | |
download | hardened-refpolicy-f160686cb9df39cb59dda8c3178fd70f9c4a1b48.tar.gz hardened-refpolicy-f160686cb9df39cb59dda8c3178fd70f9c4a1b48.tar.bz2 hardened-refpolicy-f160686cb9df39cb59dda8c3178fd70f9c4a1b48.zip |
Add "binder" security class and access vectors
Diffstat (limited to 'policy/flask')
-rw-r--r-- | policy/flask/access_vectors | 8 | ||||
-rw-r--r-- | policy/flask/security_classes | 2 |
2 files changed, 10 insertions, 0 deletions
diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors index da539c816..2b20aa0fd 100644 --- a/policy/flask/access_vectors +++ b/policy/flask/access_vectors @@ -844,6 +844,14 @@ inherits socket attach_queue } +class binder +{ + impersonate + call + set_context_mgr + transfer +} + class x_pointer inherits x_device diff --git a/policy/flask/security_classes b/policy/flask/security_classes index caed61a9a..653d3479e 100644 --- a/policy/flask/security_classes +++ b/policy/flask/security_classes @@ -123,6 +123,8 @@ class kernel_service class tun_socket +class binder + # Still More SE-X Windows stuff class x_pointer # userspace class x_keyboard # userspace |