From: Dan Walsh <dwalsh@redhat.com>
Date: Fri, 15 Jul 2011 17:31:00 +0000 (-0400)
Subject: Inititial flask rules for systemd starting and stoping of services
X-Git-Tag: 000~700^2~1
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=bbaffd2b8adf739ae83a77f1cfc04ed6b0b1e2cf;p=people%2Fstevee%2Fselinux-policy.git

Inititial flask rules for systemd starting and stoping of services
---

diff --git a/policy/flask/access_vectors b/policy/flask/access_vectors
index bf241600..468e0fd9 100644
--- a/policy/flask/access_vectors
+++ b/policy/flask/access_vectors
@@ -862,3 +862,12 @@ inherits database
 	implement
 	execute
 }
+
+class service
+{
+	start
+	stop
+	status
+	reload
+	kill
+}
diff --git a/policy/flask/security_classes b/policy/flask/security_classes
index 14a47991..067ecfca 100644
--- a/policy/flask/security_classes
+++ b/policy/flask/security_classes
@@ -131,4 +131,8 @@ class db_view			# userspace
 class db_sequence		# userspace
 class db_language		# userspace
 
+# systemd services 
+class service 
+
+
 # FLASK