RepoMirrors/selinux
1
0
Fork 0
mirror of https://github.com/SELinuxProject/selinux synced 2025-05-04 16:47:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
453 Commits 4 Branches 765 Tags 24 MiB
C 74.6%
Python 16.2%
Roff 5.2%
SWIG 1.2%
Makefile 1.1%
Other 1.7%
ad5951fcb1
Go to file
Harry Ciao ad5951fcb1 libsepol: Permanently discard disabled branches of tunables in expansion. 
For a cond_node_t in one decl->cond_list queue, append its
avtrue_list or avfalse_list to the avrules list of its home decl
depending on its state value, so that these effective rules would
be permanently added to te_avtab hashtab.

On the other hand, the rules on the disabled unused list won't be
expanded and written to the raw policy at all.

Signed-off-by: Harry Ciao <qingtao.cao@windriver.com>
Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Dan Walsh <dwalsh@redhat.com>
2011-09-16 11:54:01 -04:00
checkpolicy checkpolicy: Separate tunable from boolean during compile. 2011-09-16 11:54:01 -04:00
libselinux update changelog and versions for 2011-08-26 2011-08-26 15:11:58 -04:00
libsemanage libsemanage: change module disabled from rename to symlink 2011-09-15 17:17:48 -04:00
libsepol libsepol: Permanently discard disabled branches of tunables in expansion. 2011-09-16 11:54:01 -04:00
policycoreutils policycoreutils: sandbox: cntrl-c should kill entire process control group 2011-09-16 11:54:00 -04:00
scripts release script 2009-03-12 01:23:32 -04:00
sepolgen sepolgen: look for booleans that might solve problems 2011-09-16 11:54:00 -04:00
.gitignore Repo: update .gitignore 2011-08-02 13:31:51 -04:00
Makefile global: Makefile: create global 'all' target 2011-08-26 14:27:57 -04:00