[SELINUX]: add security class for appletalk sockets (3e3ff15e) · Commits · 戴 / test

security/selinux/hooks.c

+2 −0

Original line number	Diff line number	Diff line
		@@ -696,6 +696,8 @@ static inline u16 socket_type_to_security_class(int family, int type, int protoc
		return SECCLASS_PACKET_SOCKET;
		case PF_KEY:
		return SECCLASS_KEY_SOCKET;
		case PF_APPLETALK:
		return SECCLASS_APPLETALK_SOCKET;
		}

		return SECCLASS_SOCKET;

+1 −0

Original line number	Diff line number	Diff line
		@@ -29,3 +29,4 @@
		S_(SECCLASS_NETLINK_IP6FW_SOCKET, socket, 0x00400000UL)
		S_(SECCLASS_NETLINK_DNRT_SOCKET, socket, 0x00400000UL)
		S_(SECCLASS_NETLINK_KOBJECT_UEVENT_SOCKET, socket, 0x00400000UL)
		S_(SECCLASS_APPLETALK_SOCKET, socket, 0x00400000UL)

+23 −0

Original line number	Diff line number	Diff line
		@@ -933,3 +933,26 @@
		#define NETLINK_KOBJECT_UEVENT_SOCKET__SEND_MSG 0x00100000UL
		#define NETLINK_KOBJECT_UEVENT_SOCKET__NAME_BIND 0x00200000UL

		#define APPLETALK_SOCKET__IOCTL 0x00000001UL
		#define APPLETALK_SOCKET__READ 0x00000002UL
		#define APPLETALK_SOCKET__WRITE 0x00000004UL
		#define APPLETALK_SOCKET__CREATE 0x00000008UL
		#define APPLETALK_SOCKET__GETATTR 0x00000010UL
		#define APPLETALK_SOCKET__SETATTR 0x00000020UL
		#define APPLETALK_SOCKET__LOCK 0x00000040UL
		#define APPLETALK_SOCKET__RELABELFROM 0x00000080UL
		#define APPLETALK_SOCKET__RELABELTO 0x00000100UL
		#define APPLETALK_SOCKET__APPEND 0x00000200UL
		#define APPLETALK_SOCKET__BIND 0x00000400UL
		#define APPLETALK_SOCKET__CONNECT 0x00000800UL
		#define APPLETALK_SOCKET__LISTEN 0x00001000UL
		#define APPLETALK_SOCKET__ACCEPT 0x00002000UL
		#define APPLETALK_SOCKET__GETOPT 0x00004000UL
		#define APPLETALK_SOCKET__SETOPT 0x00008000UL
		#define APPLETALK_SOCKET__SHUTDOWN 0x00010000UL
		#define APPLETALK_SOCKET__RECVFROM 0x00020000UL
		#define APPLETALK_SOCKET__SENDTO 0x00040000UL
		#define APPLETALK_SOCKET__RECV_MSG 0x00080000UL
		#define APPLETALK_SOCKET__SEND_MSG 0x00100000UL
		#define APPLETALK_SOCKET__NAME_BIND 0x00200000UL

+1 −0

Original line number	Diff line number	Diff line
		@@ -58,3 +58,4 @@
		S_("nscd")
		S_("association")
		S_("netlink_kobject_uevent_socket")
		S_("appletalk_socket")

+1 −0

Original line number	Diff line number	Diff line
		@@ -60,6 +60,7 @@
		#define SECCLASS_NSCD 53
		#define SECCLASS_ASSOCIATION 54
		#define SECCLASS_NETLINK_KOBJECT_UEVENT_SOCKET 55
		#define SECCLASS_APPLETALK_SOCKET 56

		/*
		* Security identifier indices for initial entities