From 4254cec711c3c577a2b84a8d16bab3e09c444df0 Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Fri, 14 Aug 2009 13:18:16 -0400 Subject: [PATCH] Add missing x_device rules for XI2 functions, from Eamon Walsh. > Whats the difference between add/remove and create/destroy? > > The devices are in a kind of hierarchy. You can now create one or more > "master devices" (mouse cursor and keyboard focus). The physical input > devices are "slave devices" that attach to master devices. > > Add/remove controls the ability to add/remove slave devices from a > master device. Create/destroy controls the ability to create new master > devices. --- Changelog | 1 + policy/flask/access_vectors | 2 ++ 2 files changed, 3 insertions(+) diff --git a/Changelog b/Changelog index 9e53df072..8111e0780 100644 --- a/Changelog +++ b/Changelog @@ -1,3 +1,4 @@ +- Add missing x_device rules for XI2 functions, from Eamon Walsh. - Add missing rules to make unconfined_cronjob_t a valid cron job domain. - Add btrfs and ext4 to labeling targets. - Fix infrastructure to expand macros in initrc_context when installing. diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors index 9b026f7c5..ef4c063f1 100644 --- a/policy/flask/access_vectors +++ b/policy/flask/access_vectors @@ -544,6 +544,8 @@ class x_device set_property add remove + create + destroy } class x_server