[PATCH] SELinux: add support for NETLINK_KOBJECT_UEVENT

This patch adds SELinux support for the KOBJECT_UEVENT Netlink family, so that SELinux can apply finer grained controls to it. For example, security policy for hald can be locked down to the KOBJECT_UEVENT Netlink family only. Currently, this family simply defaults to the default Netlink socket class. Note that some new permission definitions are added to sync with changes in the core userspace policy package, which auto-generates header files. Signed-off-by: James Morris <[email protected]> Signed-off-by: Stephen Smalley <[email protected]> Signed-off-by: Andrew Morton <[email protected]> Signed-off-by: Linus Torvalds <[email protected]>
author: James Morris <[email protected]> 2005-04-16 15:24:13 -0700
committer: Linus Torvalds <[email protected]> 2005-04-16 15:24:13 -0700
commit: 0c9b79429c83a404a04908be65baa9d97836bbb6 (patch)
tree: 66cdf9fc4cf40867ed8c9dc060661615941cd95f /security/selinux/include/class_to_string.h
parent: 7e5c6bc0a600c49e5922591ad41ff41987f54eb4 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/security/selinux/include/class_to_string.h b/security/selinux/include/class_to_string.h
index 519a77d7394a..77b2c5996f35 100644
--- a/security/selinux/include/class_to_string.h
+++ b/security/selinux/include/class_to_string.h
@@ -56,3 +56,5 @@
     S_("netlink_dnrt_socket")
     S_("dbus")
     S_("nscd")
+    S_("association")
+    S_("netlink_kobject_uevent_socket")
author	James Morris <[email protected]>	2005-04-16 15:24:13 -0700
committer	Linus Torvalds <[email protected]>	2005-04-16 15:24:13 -0700
commit	0c9b79429c83a404a04908be65baa9d97836bbb6 (patch)
tree	66cdf9fc4cf40867ed8c9dc060661615941cd95f /security/selinux/include/class_to_string.h
parent	7e5c6bc0a600c49e5922591ad41ff41987f54eb4 (diff)