James Carter 0190a658a7 libsepol/cil: Allow dotted names in aliasactual rules ... The function cil_gen_alias() is used to declare type, sensitivity, and category aliases and the function cil_gen_aliasactual() is used to assign an alias to the actual declared name. Commit e55621c03 ("libsepol/cil: Add notself and other support to CIL") added "notself" and "other" as reserved words. Previously, a check was made in cil_gen_aliasactual() to ensure that the "self" reserved word was not used. With the notself patch this function was upgraded to call cil_verify_name() to verify that the other reserved words were not used as well. This change prevents the use of dotted names to refer to alias or actual names that are declared in blocks. The check for a reserved word being used is not needed because that check will be done for both the alias and the actual name when they are declared. Remove the call to cil_verify_name() and allow dotted names in aliasactual rules. Reported-by: Dominick Grift <dominick.grift@defensec.nl> Signed-off-by: James Carter <jwcart2@gmail.com>		2024-09-04 16:53:51 -04:00
..
cil	libsepol/cil: Allow dotted names in aliasactual rules	2024-09-04 16:53:51 -04:00
fuzz	libsepol/fuzz: handle empty and non kernel policies	2023-12-06 13:32:50 -05:00
include	libsepol: rework permission enabled check	2024-06-14 09:10:49 -04:00
man	Do not automatically install Russian translations	2023-08-16 13:33:47 -04:00
src	libsepol/sepol_compute_sid: Do not destroy uninitialized context	2024-07-30 13:18:08 -04:00
tests	libsepol/tests: Update the order of neverallow test results	2023-11-21 08:55:45 -05:00
utils	libsepol/utils: improve wording	2022-07-06 15:57:24 -04:00
.gitignore	libsepol: add policy utilities	2022-04-12 13:09:19 -04:00
LICENSE	docs: provide a top level LICENSE file	2022-10-05 08:20:38 -04:00
Makefile
VERSION	Release 3.7	2024-06-26 17:30:41 +02:00