commit: d4a700a51afb005ec966e886d7722df09b80f86b
Author: Laurent Bigonville <bigon <AT> bigon <DOT> be>
AuthorDate: Sun Oct 21 11:00:35 2018 +0000
Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Sun Nov 11 23:17:31 2018 +0000
URL:
https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=d4a700a5
Add xdp_socket security class and access vectors
Added in 4.18 release
Signed-off-by: Jason Zaman <jason <AT> perfinion.com>
policy/flask/access_vectors | 3 +++
policy/flask/security_classes | 2 ++
2 files changed, 5 insertions(+)
diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors
index b011d37e..cd24ccc5 100644
--- a/policy/flask/access_vectors
+++ b/policy/flask/access_vectors
@@ -1090,3 +1090,6 @@ class bpf
prog_load
prog_run
}
+
+class xdp_socket
+inherits socket
diff --git a/policy/flask/security_classes b/policy/flask/security_classes
index 2ae34306..44b2a8a1 100644
--- a/policy/flask/security_classes
+++ b/policy/flask/security_classes
@@ -192,4 +192,6 @@ class process2
class bpf
+class xdp_socket
+
# FLASK
