Jeff Vander Stoep 99fc177b5a Add neverallow support for ioctl extended permissions ... Neverallow rules for ioctl extended permissions will pass in two cases: 1. If extended permissions exist for the source-target-class set the test will pass if the neverallow values are excluded. 2. If extended permissions do not exist for the source-target-class set the test will pass if the ioctl permission is not granted. Signed-off-by: Jeff Vander Stoep <jeffv@google.com> Acked-by: Nick Kralevich <nnk@google.com> Acked-by: Stephen Smalley <sds@tycho.nsa.gov>		2015-09-22 10:52:47 -04:00
..
cil	libsepol/cil: improve recursion detection	2015-09-15 12:40:09 -04:00
include	Add neverallow support for ioctl extended permissions	2015-09-22 10:52:47 -04:00
man	Laurent Bigonville patch to fix various minor manpage issues and correct section numbering.	2013-10-24 13:58:37 -04:00
src	Add neverallow support for ioctl extended permissions	2015-09-22 10:52:47 -04:00
tests	libsepol/tests: fix gcc -Warray-bounds warning	2014-10-02 09:56:45 -04:00
utils	libsepol: Android/MacOS X build support	2012-06-28 11:21:15 -04:00
.gitignore	libsepol: build cil into libsepol	2014-08-26 08:03:31 -04:00
Android.mk	libsepol/cil: Add function to search the CIL AST for an AV rule.	2015-06-22 10:03:07 -04:00
ChangeLog	Updated libsepol ChangeLog.	2015-09-15 12:50:22 -04:00
COPYING	initial import from svn trunk revision 2950	2008-08-19 15:30:36 -04:00
Makefile	libsepol: build cil into libsepol	2014-08-26 08:03:31 -04:00
VERSION	Bump to final release	2015-02-02 09:38:10 -05:00