|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [Xen-changelog] [xen-unstable] Add 2 more permissions to the XSM/Flask default policy.
# HG changeset patch
# User Keir Fraser <keir.fraser@xxxxxxxxxx>
# Date 1225103379 0
# Node ID b99ab7f88a8205f4ecfc6c1c002d6256e1115c17
# Parent 3ff349c7aeb77a0a66a53dd409751e3574a4742b
Add 2 more permissions to the XSM/Flask default policy.
Signed-off-by: Stefan Berger <stefanb@xxxxxxxxxx>
---
tools/flask/policy/policy/modules/xen/xen.te | 3 ++-
1 files changed, 2 insertions(+), 1 deletion(-)
diff -r 3ff349c7aeb7 -r b99ab7f88a82
tools/flask/policy/policy/modules/xen/xen.te
--- a/tools/flask/policy/policy/modules/xen/xen.te Mon Oct 27 10:08:48
2008 +0000
+++ b/tools/flask/policy/policy/modules/xen/xen.te Mon Oct 27 10:29:39
2008 +0000
@@ -74,7 +74,7 @@ allow dom0_t pirq_t:event {vector};
allow dom0_t pirq_t:event {vector};
allow dom0_t xen_t:mmu {memorymap};
-allow dom0_t dom0_t:mmu {pinpage map_read map_write adjust};
+allow dom0_t dom0_t:mmu {pinpage map_read map_write adjust updatemp};
allow dom0_t dom0_t:grant {query setup};
allow dom0_t dom0_t:domain {scheduler getdomaininfo getvcpuinfo
getvcpuaffinity};
@@ -112,6 +112,7 @@ allow domU_t evchnU-0_t:event {send};
allow dom0_t dom0_t:event {send};
allow dom0_t domU_t:grant {copy};
+allow domU_t domU_t:grant {copy};
manage_domain(dom0_t, domU_t)
_______________________________________________
Xen-changelog mailing list
Xen-changelog@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-changelog
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |