8486b8aa83
entrypoint and execute_no_trans permissions are only ever checked by the kernel to regular files. They were added to the chr_file class when execmod was added (which can be checked on chr_file) to ensure that it was assigned the same value as for the file class, since the kernel code always checked FILE__EXECMOD. However, the policy definitions are not necessary since the kernel and policy values have been decoupled ever since dynamic class/perm support was introduced and further with the move of execmod to the common definitions, they were not even needed in the kernel. These were removed from the kernel's classmap by https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b424485abe2b16580a178b469917a7b6ee0c152a Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> |
||
|---|---|---|
| .. | ||
| access_vectors | ||
| initial_sids | ||
| security_classes | ||