Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit aad29b90 authored by Stephen Smalley's avatar Stephen Smalley Committed by Gerrit - the friendly Code Review server
Browse files

selinux: Remove unused permission definitions 



Remove unused permission definitions from SELinux.
Many of these were only ever used in pre-mainline
versions of SELinux, prior to Linux 2.6.0.  Some of them
were used in the legacy network or compat_net=1 checks
that were disabled by default in Linux 2.6.18 and
fully removed in Linux 2.6.30.

Permissions never used in mainline Linux:
file swapon
filesystem transition
tcp_socket { connectto newconn acceptfrom }
node enforce_dest
unix_stream_socket { newconn acceptfrom }

Legacy network checks, removed in 2.6.30:
socket { recv_msg send_msg }
node { tcp_recv tcp_send udp_recv udp_send rawip_recv rawip_send dccp_recv dccp_send }
netif { tcp_recv tcp_send udp_recv udp_send rawip_recv rawip_send dccp_recv dccp_send }

Change-Id: I1eab7cffed536a21b51d3c83ea01dfd8436f170d
Signed-off-by: default avatarStephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: default avatarPaul Moore <pmoore@redhat.com>
Git-commit: 42a9699a9fa179c0054ea3cf5ad3cc67104a6162
Git-repo: https://android.googlesource.com/kernel/common.git


Signed-off-by: default avatarSrinivasarao P <spathi@codeaurora.org>
parent c3cad444
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment