* Add permission cmd to class io_uring (added in Linux 6.0 and 5.19.9)
* Add class user_namespace (added in Linux 6.1)
Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
The Ctrl-C and Ctrl-X shortcuts are handled by the copy() and cut()
functions in the ApolMainWindow, which just get the currently focused
widget and call its function of the same name.
However, the custom SEToolsTableView and SEToolsTreeView widgets do not
use these functions to implement Ctrl-C/X, but instead override the
event() function and check if each received event is a copy/cut key
sequence. Functionally this is the same as copy() and cut(), but this
leads to an abort in newer versions for Fedora and/or PyQT5 (the reason
is not obvious).
To avoid the abort, and arguably make things a little more clear, this
overrides the copy() and cut() functions in these widgets, moves the
specialize copy logic into them, and removes the event() function.
Closes#77
Signed-off-by: Steve Lawrence <slawrence@owlcyberdefense.com>
The perms_subset rule search flag matches rules where the searched perms
are a subset of the rule perms. This flag is currently only exposed via
apol, and this commit exposes it via sesearch
Signed-off-by: Daniel Burgener <dburgener@linux.microsoft.com>
The old text does not match the behavior observed in practice or the
description in the --help flag
Signed-off-by: Daniel Burgener <dburgener@linux.microsoft.com>
The CLI tools get installed to most distros, but sedta and seinfoflow are
not typically used or separated into a different package. This will allow
seinfo, sesearch, and sediff to function if NetworkX is missing, since they
don't require it.
Signed-off-by: Chris PeBenito <chpebeni@linux.microsoft.com>
Change the sedta and seinfoflow so that they output a summary of the transitions
and flows. Add a --full option to get the full rule outputs.
Signed-off-by: Chris PeBenito <chpebeni@linux.microsoft.com>
There are few places where frozenset is used. Given that frozenset is an unordered
collection the output generated from this is unpredictable.
The following command outputs are fixed using sorted() on frozensets:
seinfo --constrain
seinfo --common
seinfo -c -x
seinfo -r -x
seinfo -u -x
Fixes: https://github.com/SELinuxProject/setools/issues/65
Signed-off-by: Petr Lautrbach <plautrba@redhat.com>
Several class annotations were subscripted but pylint had a bug that did
not handle this. This is now fixed in pylint 2.8+.
Signed-off-by: Chris PeBenito <pebenito@ieee.org>
Drop removed permission.
They are removed in Linux 4.3 and not checked since at least 2.6.30, see
42a9699a9f
Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
Add watch permissions, added in ac5656d8a4
Add `perf_event` class, added in da97e18458
Add `lockdown` class, added in 59438b4647
Add `anon_inode` class, added in 29cd6591ab
Drop inexistent permissions `execute_no_trans` and `entrypoint` from
`chr_file`
Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
