diff options
| author |   Stephen Smalley <sds@tycho.nsa.gov> | 2017-01-12 10:42:28 -0500 |
|---|---|---|
| committer |   Jason Zaman <jason@perfinion.com> | 2017-01-23 20:55:22 +0800 |
| commit | d698ea3073a464e1fb241721bdb254f42bf68346 (patch) | |
| tree | 93137df103cb2e387ff30d4588dbd6bf3f8fbb66 /policy/flask/access_vectors | |
| parent | Update state of repository (diff) | |
| download | hardened-refpolicy-d698ea3073a464e1fb241721bdb254f42bf68346.tar.gz hardened-refpolicy-d698ea3073a464e1fb241721bdb254f42bf68346.tar.bz2 hardened-refpolicy-d698ea3073a464e1fb241721bdb254f42bf68346.zip | |
refpolicy: drop unused socket security classes
A few of the socket classes added by commit 09ebf2b59a7255 ("refpolicy:
Define extended_socket_class policy capability and socket classes") are
never used because sockets can never be created with the associated
address family. Remove these unused socket security classes.
The removed classes are bridge_socket for PF_BRIDGE, ib_socket for PF_IB,
and mpls_socket for PF_MPLS.
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Diffstat (limited to 'policy/flask/access_vectors')
| -rw-r--r-- | policy/flask/access_vectors | 9 |
1 files changed, 0 insertions, 9 deletions
diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors index ffe6ca0e..69f69af8 100644 --- a/policy/flask/access_vectors +++ b/policy/flask/access_vectors @@ -990,9 +990,6 @@ inherits socket class netrom_socket inherits socket -class bridge_socket -inherits socket - class atmpvc_socket inherits socket @@ -1020,12 +1017,6 @@ inherits socket class llc_socket inherits socket -class ib_socket -inherits socket - -class mpls_socket -inherits socket - class can_socket inherits socket |