selinux

mirror of https://github.com/SELinuxProject/selinux synced 2024-12-20 05:00:09 +00:00

History

James Carter fb3a383f42 libsepol: The src and tgt must be the same if neverallow uses self When checking for violations of neverallow rules, if the neverallow uses self, then the src and tgt must be the same when checking extended permissions and when reporting violations. Example: allow attr attr : CLASS PERM; neverallow attr self : CLASS PERM; If the types t1 and t2 have attribute attr, then the violations that would be reported would be: allow t1 t1 : CLASS PERM; allow t1 t2 : CLASS PERM; allow t2 t1 : CLASS PERM; allow t2 t2 : CLASS PERM; instead of: allow t1 t1 : CLASS PERM; allow t2 t2 : CLASS PERM; Signed-off-by: James Carter <jwcart2@gmail.com>		2022-02-24 10:38:26 -05:00
..
cil	libsepol/cil: Ensure that the class in a classcommon is a kernel class	2022-02-11 14:07:03 -05:00
fuzz	libsepol: add libfuzz based fuzzer for reading binary policies	2021-12-15 12:48:28 -05:00
include	libsepol: avoid implicit conversions	2021-07-13 21:01:07 +02:00
man	selinux: Update manpages after removing legacy boolean and user code	2019-07-29 23:46:47 +02:00
src	libsepol: The src and tgt must be the same if neverallow uses self	2022-02-24 10:38:26 -05:00
tests	ci: run the tests under ASan/UBsan on GHActions	2022-01-06 10:34:33 -05:00
utils
.gitignore
COPYING
Makefile
VERSION	Update VERSIONs to 3.3 for release.	2021-10-21 16:31:23 +02:00