RepoMirrors
/
selinux
mirror of https://github.com/SELinuxProject/selinux
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
selinux/libsepol
History
Christian Göttsche fa936a0a30 libsepol: reject attributes in type av rules for kernel policies 
The kernel does not support type attributes as source or target in type
av rules (type_transition, type_member, type_change)[1].  Such rules
should have been expanded[2].

[1]: abe3c63144/security/selinux/ss/services.c (L1843)
[2]: 0a8c177dac/libsepol/src/expand.c (L1981)

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
Acked-by: James Carter <jwcart2@gmail.com>
 		2023-01-11 08:43:09 -05:00
..
cil libsepol/cil: restore error on context rule conflicts 2022-10-13 11:24:00 -04:00
fuzz libsepol: add libfuzz based fuzzer for reading binary policies 2021-12-15 12:48:28 -05:00
include libsepol: support const avtab_t pointer in avtab_map() 2022-08-09 09:52:34 -04:00
man selinux: Update manpages after removing legacy boolean and user code 2019-07-29 23:46:47 +02:00
src libsepol: reject attributes in type av rules for kernel policies 2023-01-11 08:43:09 -05:00
tests libsepol/tests: add tests for neverallow assertions 2022-11-21 14:34:37 -05:00
utils libsepol/utils: improve wording 2022-07-06 15:57:24 -04:00
.gitignore libsepol: add policy utilities 2022-04-12 13:09:19 -04:00
LICENSE docs: provide a top level LICENSE file 2022-10-05 08:20:38 -04:00
Makefile
VERSION Update VERSIONs to 3.5-rc1 for release. 2022-12-22 13:10:26 -08:00