selinux-refpolicy

mirror of https://github.com/SELinuxProject/refpolicy synced 2025-02-24 00:16:57 +00:00

History

qqo aedd5c314d Adds attribute mlstrustedsocket, along with the interface. Sample AVC: type=AVC msg=audit(1459979143.990:219): avc: denied { sendto } for pid=1935 comm="charon" path="/dev/log" scontext=system_u:system_r:initrc_t:s0-s3:c0.c31 tcontext=system_u:system_r:syslogd_t:s3:c0.c31 tclass=unix_dgram_socket permissive=0 This was discussed in 2010: http://oss.tresys.com/pipermail/refpolicy/2010-November/003444.html		2016-04-12 19:28:13 +03:00
..
flask	Add systemd access vectors.	2015-10-20 15:01:27 -04:00
modules	Adds attribute mlstrustedsocket, along with the interface.	2016-04-12 19:28:13 +03:00
support	Update netlink socket classes.	2015-05-22 08:29:03 -04:00
constraints	Update netlink socket classes.	2015-05-22 08:29:03 -04:00
context_defaults	Fix error in default_user example.	2014-04-28 10:19:22 -04:00
global_booleans	Move secure_mode_policyload into selinux module as that is the only place it is used.	2011-09-26 09:53:23 -04:00
global_tunables
mcs	Implement mcs_constrained_type	2012-11-28 16:12:25 -05:00
mls	Adds attribute mlstrustedsocket, along with the interface.	2016-04-12 19:28:13 +03:00
policy_capabilities	Add always_check_network policy capability.	2015-01-27 17:25:36 -05:00
users	Apply direct_initrc to unconfined_r:unconfined_t	2014-01-16 15:27:18 -05:00