RepoMirrors/selinux
1
0
Fork 0
mirror of https://github.com/SELinuxProject/selinux synced 2025-01-17 19:00:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
7ef5b1854f
selinux/libsepol
History
James Carter 734e4beb55 libsepol/cil: Validate conditional expressions before adding to binary policy 
CIL was not correctly determining the depth of conditional expressions
which prevented it from giving an error when the max depth was exceeded.
This allowed invalid policy binaries to be created.

Validate the conditional expression using the same logic that is used
when evaluating a conditional expression. This includes checking the
depth of the expression.

Signed-off-by: James Carter <jwcart2@gmail.com>
Acked-by: Stephen Smalley <stephen.smalley.work@gmail.com>
2020-09-11 16:28:03 -04:00
..
cil libsepol/cil: Validate conditional expressions before adding to binary policy 2020-09-11 16:28:03 -04:00
include libsepol: implement POLICYDB_VERSION_COMP_FTRANS 2020-08-03 08:52:12 -04:00
man selinux: Update manpages after removing legacy boolean and user code 2019-07-29 23:46:47 +02:00
src libsepol: implement POLICYDB_VERSION_COMP_FTRANS 2020-08-03 08:52:12 -04:00
tests libsepol/tests: drop ncurses dependency 2020-05-04 10:31:44 +02:00
utils libsepol: build: follow standard semantics for DESTDIR and PREFIX 2018-02-14 15:59:36 +01:00
.gitignore
COPYING
Makefile
VERSION Update VERSIONs and Python bindings version to 3.1 for release 2020-07-10 17:17:15 +02:00