linux/security/selinux/include
Paul Moore 6f96c142f7 selinux: add the "attach_queue" permission to the "tun_socket" class
Add a new permission to align with the new TUN multiqueue support,
"tun_socket:attach_queue".

The corresponding SELinux reference policy patch is show below:

 diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors
 index 28802c5..a0664a1 100644
 --- a/policy/flask/access_vectors
 +++ b/policy/flask/access_vectors
 @@ -827,6 +827,9 @@ class kernel_service

  class tun_socket
  inherits socket
 +{
 +       attach_queue
 +}

  class x_pointer
  inherits x_device

Signed-off-by: Paul Moore <pmoore@redhat.com>
Acked-by: Eric Paris <eparis@parisplace.org>
Tested-by: Jason Wang <jasowang@redhat.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2013-01-14 18:16:59 -05:00
..
audit.h SELinux: keep the code clean formating and syntax 2008-07-14 15:01:36 +10:00
avc_ss.h selinux: sparse fix: fix several warnings in the security server code 2011-09-09 16:56:32 -07:00
avc.h SELinux: avc: remove the useless fields in avc_add_callback 2012-04-09 12:23:44 -04:00
classmap.h selinux: add the "attach_queue" permission to the "tun_socket" class 2013-01-14 18:16:59 -05:00
conditional.h Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
initial_sid_to_string.h selinux: const strings in tables 2010-03-08 09:33:53 +11:00
netif.h doc: Update the email address for Paul Moore in various source files 2011-08-01 17:58:33 -07:00
netlabel.h doc: Update the email address for Paul Moore in various source files 2011-08-01 17:58:33 -07:00
netnode.h doc: Update the email address for Paul Moore in various source files 2011-08-01 17:58:33 -07:00
netport.h doc: Update the email address for Paul Moore in various source files 2011-08-01 17:58:33 -07:00
objsec.h switch selinux delayed superblock handling to iterate_supers() 2010-05-21 18:31:17 -04:00
security.h switch dentry_open() to struct path, make it grab references itself 2012-07-23 00:01:29 +04:00
xfrm.h xfrm: invalidate dst on policy insertion/deletion 2012-09-18 15:57:03 -04:00