selinux-refpolicy

Commit Graph

Author	SHA1	Message	Date
Stephen Smalley	161bda392e	access_vectors: Remove unused permissions Remove unused permission definitions from SELinux. Many of these were only ever used in pre-mainline versions of SELinux, prior to Linux 2.6.0. Some of them were used in the legacy network or compat_net=1 checks that were disabled by default in Linux 2.6.18 and fully removed in Linux 2.6.30. The corresponding classmap declarations were removed from the mainline kernel in: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=42a9699a9fa179c0054ea3cf5ad3cc67104a6162 Permissions never used in mainline Linux: file swapon filesystem transition tcp_socket { connectto newconn acceptfrom } node enforce_dest unix_stream_socket { newconn acceptfrom } Legacy network checks, removed in 2.6.30: socket { recv_msg send_msg } node { tcp_recv tcp_send udp_recv udp_send rawip_recv rawip_send dccp_recv dccp_send } netif { tcp_recv tcp_send udp_recv udp_send rawip_recv rawip_send dccp_recv dccp_send } Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>	2020-01-14 13:41:50 -05:00
Chris PeBenito	291f68a119	various: Module version bump. Signed-off-by: Chris PeBenito <pebenito@ieee.org>	2019-09-30 20:39:31 -04:00
Chris PeBenito	61ecff5c31	Remove old aliases. Signed-off-by: Chris PeBenito <pebenito@ieee.org>	2019-09-30 20:02:43 -04:00
Chris PeBenito	65e8f758ca	Bump module versions for release.	2018-07-01 11:02:33 -04:00
Chris PeBenito	3ab07a0e1e	Move all files out of the old contrib directory.	2018-06-23 10:38:58 -04:00
Chris PeBenito	09248fa0db	Move modules to contrib submodule.	2011-09-09 10:10:03 -04:00
Chris PeBenito	826d014241	Bump module versions for release.	2010-12-13 09:12:22 -05:00
Chris PeBenito	e06817bc03	Module version bump for wireshark patch.	2010-10-18 09:51:21 -04:00
Jeremy Solt	93985f63d7	wireshark patch from Dan Walsh files_poly_member is provided by userdom_user_home_content Whitespace fixes	2010-10-18 09:51:21 -04:00
Chris PeBenito	4b76ea5f51	Module version bump for `fa1847f`.	2010-07-12 14:02:18 -04:00
Dominick Grift	fa1847f4a2	Add files_poly_member() to userdom_user_home_content() Remove redundant files_poly_member() calls. Signed-off-by: Dominick Grift <domg472@gmail.com> Signed-off-by: Chris PeBenito <cpebenito@tresys.com>	2010-07-09 09:43:04 -04:00
Chris PeBenito	bca0cdb86e	Remove duplicate/redundant rules, from Russell Coker.	2010-07-07 08:41:20 -04:00
Chris PeBenito	48f99a81c0	Whitespace change: drop unnecessary blank line at the start of .te files.	2010-06-10 08:16:35 -04:00
Chris PeBenito	ed3a1f559a	bump module versions for release.	2009-11-17 10:05:56 -05:00
Chris PeBenito	4279891d1f	patch from Eamon Walsh to remove useage of deprecated xserver interfaces.	2009-08-28 13:40:29 -04:00
Chris PeBenito	3f67f722bb	trunk: whitespace fixes	2009-06-26 14:40:13 +00:00
Chris PeBenito	296273a719	trunk: merge UBAC.	2008-11-05 16:10:46 +00:00
Chris PeBenito	0bfccda4e8	trunk: massive whitespace cleanup from dominick grift.	2008-07-23 21:38:39 +00:00
Chris PeBenito	6e2123fc72	trunk: add wireshark.	2008-03-14 15:26:52 +00:00

19 Commits