RepoMirrors/selinux
1
0
Fork 0
mirror of https://github.com/SELinuxProject/selinux synced 2024-12-16 19:24:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
c3345c58a4
selinux/libsepol
History
Yuli Khodorkovskiy c3345c58a4 libsepol/cil: Verify users prior to evaluating users 
If a userlevel or userrange statement is missing from a policy,
evaluate_level_expression() and evaluate_levelrange_expression, respectively
will have a NULL pointer dereference caused by a missing level in a user.

Add cil_pre_verify() which verifies users have a valid level. Also, move loop
checking in classpermissions into cil_pre_verify().

This fixes https://github.com/SELinuxProject/cil/issues/1.

Signed-off-by: Yuli Khodorkovskiy <ykhodorkovskiy@tresys.com>
2015-05-05 16:00:03 -04:00
..
cil libsepol/cil: Verify users prior to evaluating users 2015-05-05 16:00:03 -04:00
include Add support for ioctl command whitelisting 2015-04-23 08:30:33 -04:00
man Laurent Bigonville patch to fix various minor manpage issues and correct section numbering. 2013-10-24 13:58:37 -04:00
src libsepol: Binary modules do not support ioctl rules. 2015-04-24 14:24:04 -04:00
tests libsepol/tests: fix gcc -Warray-bounds warning 2014-10-02 09:56:45 -04:00
utils libsepol: Android/MacOS X build support 2012-06-28 11:21:15 -04:00
.gitignore libsepol: build cil into libsepol 2014-08-26 08:03:31 -04:00
Android.mk libsepol, secilc: Fix build for Android 2015-04-02 12:01:10 -04:00
ChangeLog Update libsepol ChangeLog. 2015-04-24 14:32:01 -04:00
COPYING initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
Makefile libsepol: build cil into libsepol 2014-08-26 08:03:31 -04:00
VERSION Bump to final release 2015-02-02 09:38:10 -05:00