From: bigon@debian.org (Laurent Bigonville)
Date: Wed,  6 May 2015 18:31:28 +0200
Subject: [refpolicy] [PATCH] Add "binder" security class and access vectors
Message-ID: <1430929888-18375-1-git-send-email-bigon@debian.org>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

From: Laurent Bigonville <bigon@bigon.be>

---
 policy/flask/access_vectors   | 8 ++++++++
 policy/flask/security_classes | 2 ++
 2 files changed, 10 insertions(+)

diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors
index bea72a0..97665b4 100644
--- a/policy/flask/access_vectors
+++ b/policy/flask/access_vectors
@@ -844,6 +844,14 @@ inherits socket
 	attach_queue
 }
 
+class binder
+{
+	impersonate
+	call
+	set_context_mgr
+	transfer
+}
+
 class x_pointer
 inherits x_device
 
diff --git a/policy/flask/security_classes b/policy/flask/security_classes
index c9cf486..ca7eb41 100644
--- a/policy/flask/security_classes
+++ b/policy/flask/security_classes
@@ -123,6 +123,8 @@ class kernel_service
 
 class tun_socket
 
+class binder
+
 # Still More SE-X Windows stuff
 class x_pointer			# userspace
 class x_keyboard		# userspace
-- 
2.1.4