selinux

mirror of https://github.com/SELinuxProject/selinux synced 2024-12-19 20:50:08 +00:00

History

Christian Göttsche 93ff4ce524 libsepol: reject xperm av rules in conditional statements Extended permission and neverallow rules are not permitted in conditional statements. This causes issues on policy optimization where avtab_search() might return a non extended permission rule when searching for one. Found by oss-fuzz (#45327) Signed-off-by: Christian Göttsche <cgzones@googlemail.com>		2022-03-11 10:12:56 -05:00
..
cil	libsepol/cil: Limit the amount of reporting for context rule conflicts	2022-02-24 10:39:45 -05:00
fuzz	libsepol: add libfuzz based fuzzer for reading binary policies	2021-12-15 12:48:28 -05:00
include	libsepol: Add 'ioctl_skip_cloexec' policy capability	2022-03-03 12:10:47 -05:00
man	selinux: Update manpages after removing legacy boolean and user code	2019-07-29 23:46:47 +02:00
src	libsepol: reject xperm av rules in conditional statements	2022-03-11 10:12:56 -05:00
tests	ci: run the tests under ASan/UBsan on GHActions	2022-01-06 10:34:33 -05:00
utils	libsepol: build: follow standard semantics for DESTDIR and PREFIX	2018-02-14 15:59:36 +01:00
.gitignore
COPYING
Makefile
VERSION	Update VERSIONs to 3.3 for release.	2021-10-21 16:31:23 +02:00