selinux-refpolicy

History

Russell Coker 3e39efffdf patches for nspawn policy (#721 ) * patches to nspawn policy. Allow it netlink operations and creating udp sockets Allow remounting and reading sysfs Allow stat cgroup filesystem Make it create fifos and sock_files in the right context Allow mounting the selinux fs Signed-off-by: Russell Coker <russell@coker.com.au> * Use the new mounton_dir_perms and mounton_file_perms macros Signed-off-by: Russell Coker <russell@coker.com.au> * Corrected macro name Signed-off-by: Russell Coker <russell@coker.com.au> * Fixed description of files_mounton_kernel_symbol_table Signed-off-by: Russell Coker <russell@coker.com.au> * systemd: Move lines in nspawn. No rule changes. Signed-off-by: Chris PeBenito <pebenito@ieee.org> --------- Signed-off-by: Russell Coker <russell@coker.com.au> Signed-off-by: Chris PeBenito <pebenito@ieee.org> Co-authored-by: Chris PeBenito <pebenito@ieee.org>		2023-10-09 09:32:38 -04:00
..
file_patterns.spt	file_patterns.spt: Add a mmap_manage_files_pattern().	2021-01-28 10:51:39 -05:00
ipc_patterns.spt	update policy/support macros	2016-12-01 19:38:14 +01:00
loadable_module.spt	Drop module versioning.	2022-01-06 09:19:13 -05:00
misc_macros.spt	can_exec(): move from misc_macros to misc_patterns	2020-05-15 15:59:13 +02:00
misc_patterns.spt	systemd: Add systemd-homed and systemd-userdbd.	2022-02-01 09:07:28 -05:00
mls_mcs_macros.spt
obj_perm_sets.spt	patches for nspawn policy (#721 )	2023-10-09 09:32:38 -04:00