From e5dbe7527690d95cced0e58052746fb59d9321c7 Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Fri, 25 Oct 2019 15:45:31 -0400 Subject: [PATCH] Move open, audit_access, and execmod to file common. Signed-off-by: Chris PeBenito --- INSTALL | 3 +++ policy/flask/access_vectors | 32 +++----------------------------- 2 files changed, 6 insertions(+), 29 deletions(-) diff --git a/INSTALL b/INSTALL index f6baf8405..0ec4e4239 100644 --- a/INSTALL +++ b/INSTALL @@ -1,3 +1,6 @@ +Reference Policy has the following runtime requirements: + * Linux kernel >= 2.6.34 + Reference Policy has the following build requirements: * SELinux userspace 2.8 * Python >= 3.4 diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors index 40d1c24d5..30d3958d9 100644 --- a/policy/flask/access_vectors +++ b/policy/flask/access_vectors @@ -28,6 +28,9 @@ common file swapon quotaon mounton + open + audit_access + execmod } @@ -208,9 +211,6 @@ inherits file reparent search rmdir - open - audit_access - execmod } class file @@ -218,52 +218,26 @@ inherits file { execute_no_trans entrypoint - execmod - open - audit_access } class lnk_file inherits file -{ - open - audit_access - execmod -} class chr_file inherits file { execute_no_trans entrypoint - execmod - open - audit_access } class blk_file inherits file -{ - open - audit_access - execmod -} class sock_file inherits file -{ - open - audit_access - execmod -} class fifo_file inherits file -{ - open - audit_access - execmod -} class fd {