selinux

mirror of https://github.com/SELinuxProject/selinux synced 2024-12-20 21:20:13 +00:00

History

Juraj Marcin 1174483d29 checkpolicy,libsepol: add prefix/suffix support to kernel policy Currently, filename type transitions support only exact name matching. However, in practice, the names contain variable parts. This leads to many duplicated rules in the policy that differ only in the part of the name, or it is even impossible to cover all possible combinations. This patch extends the filename type transitions structures to include new types of filename transitions - prefix and suffix filename transitions. It also implements the reading and writing of those rules in the kernel binary policy format together with increasing its version. Reviewed-by: Ondrej Mosnacek <omosnace@redhat.com> Signed-off-by: Juraj Marcin <juraj@jurajmarcin.com> Acked-by: James Carter <jwcart2@gmail.com>		2023-07-12 12:58:24 -04:00
..
cil	checkpolicy,libsepol: move filename transition rules to avrule	2023-07-12 12:58:19 -04:00
fuzz	libsepol: add libfuzz based fuzzer for reading binary policies	2021-12-15 12:48:28 -05:00
include	checkpolicy,libsepol: add prefix/suffix support to kernel policy	2023-07-12 12:58:24 -04:00
man
src	checkpolicy,libsepol: add prefix/suffix support to kernel policy	2023-07-12 12:58:24 -04:00
tests	libsepol/tests: rename bool indentifiers	2023-05-03 09:15:20 -04:00
utils	libsepol/utils: improve wording	2022-07-06 15:57:24 -04:00
.gitignore	libsepol: add policy utilities	2022-04-12 13:09:19 -04:00
LICENSE	docs: provide a top level LICENSE file	2022-10-05 08:20:38 -04:00
Makefile
VERSION	Update VERSIONs to 3.5 for release.	2023-02-23 05:16:11 -08:00