From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 6458613832E for ; Sat, 13 Aug 2016 18:32:14 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 9A06F21C0B0; Sat, 13 Aug 2016 18:32:08 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id CA61221C0B0 for ; Sat, 13 Aug 2016 18:32:04 +0000 (UTC) Received: from oystercatcher.gentoo.org (unknown [IPv6:2a01:4f8:202:4333:225:90ff:fed9:fc84]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 96654340CD6 for ; Sat, 13 Aug 2016 18:32:03 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id D1008245E for ; Sat, 13 Aug 2016 18:32:00 +0000 (UTC) From: "Jason Zaman" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Jason Zaman" Message-ID: <1471112583.66b4c46a4baa68f44abe07f11ac607c6303c774b.perfinion@gentoo> Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/flask/ X-VCS-Repository: proj/hardened-refpolicy X-VCS-Files: policy/flask/access_vectors X-VCS-Directories: policy/flask/ X-VCS-Committer: perfinion X-VCS-Committer-Name: Jason Zaman X-VCS-Revision: 66b4c46a4baa68f44abe07f11ac607c6303c774b X-VCS-Branch: master Date: Sat, 13 Aug 2016 18:32:00 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: cb315db9-a722-4068-8ad1-88d6d87ea28e X-Archives-Hash: af76f6c23e9012227cd6767bb4d1cef8 Message-ID: <20160813183200.qw5F5ypm4lx75egcYwDcmWCncdgQSX1Bybe6oGs6f44@z> commit: 66b4c46a4baa68f44abe07f11ac607c6303c774b Author: Guido Trentalancia trentalancia net> AuthorDate: Sun Aug 7 21:07:52 2016 +0000 Commit: Jason Zaman gentoo org> CommitDate: Sat Aug 13 18:23:03 2016 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=66b4c46a Add module_load permission to class system The "module_load" permission has been recently added to the "system" class (kernel 4.7). The following patch updates the Reference Policy so that the new permission can be used to create SELinux policies. Signed-off-by: Guido Trentalancia trentalancia.net> policy/flask/access_vectors | 1 + 1 file changed, 1 insertion(+) diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors index 1d045b4..77cbf1f 100644 --- a/policy/flask/access_vectors +++ b/policy/flask/access_vectors @@ -448,6 +448,7 @@ class system syslog_mod syslog_console module_request + module_load # these are overloaded userspace # permissions from systemd