rpms/libsepol
3
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
215 Commits 40 Branches 211 Tags 1.2 MiB
554824b9da
Commit Graph

215 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dan Walsh
554824b9da Latest patches 2011-04-12 13:11:15 -04:00
Dan Walsh
53af5b6865 re-add Erics patch for filename transitions 
Update to upstream
	* Add new class field in role_transition by Harry Ciao.
 2011-04-12 10:36:13 -04:00
Dan Walsh
a3a7288b5c * Give correct names to mount points in load_policy by Dan Walsh. 
* Make sure selinux state is reported correctly if selinux is disabled or
	fails to load by Dan Walsh.
	* Fix crash if selinux_key_create was never called by Dan Walsh.
	* Add new file_context.subs_dist for distro specific filecon substitutions
	by Dan Walsh.
	* Update man pages for selinux_color_* functions by Richard Haines.
 2011-04-12 10:03:13 -04:00
Dan Walsh
92502fe369 Apply Eparis Patch 
This patch add libsepol support for filename_trans rules.  These rules
allow on to make labeling decisions for new objects based partially on
the last path component.  They are stored in a list.  If we find that
the number of rules grows to an significant size I will likely choose to
store these in a hash, both in libsepol and in the kernel.  But as long
as the number of such rules stays small, this should be good.
 2011-03-29 15:27:36 -04:00
Dennis Gilmore
65043ab531 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild 2011-02-08 05:21:04 -06:00
Dan Walsh
60894b281e - Upgrade to latest from NSA 
* Fix compliation under GCC 4.6 by Justin Mattock
 2010-12-22 14:56:26 -05:00
Dan Walsh
9788767c5c - Upgrade to latest from NSA 
* Fix compliation under GCC 4.6 by Justin Mattock
 2010-12-21 16:43:33 -05:00
Fedora Release Engineering
957300d4ea dist-git conversion 2010-07-28 21:38:27 +00:00
Dan Horák
a7387c80ed - Fix libsepol.pc file 2010-06-17 07:38:54 +00:00
Daniel J Walsh
83e7a5b3fa - Resolve specfile problems Resolves: #555835 2010-01-28 21:04:22 +00:00
Daniel J Walsh
90faed0461 - Resolve specfile problems Resolves: #555835 2010-01-28 21:03:34 +00:00
Bill Nottingham
c07084d5f6 Fix typo that causes a failure to update the common directory. (releng 
#2781)
 2009-11-25 23:51:16 +00:00
Daniel J Walsh
aca479dae3 - Upgrade to latest from NSA 
Fixed typo in error message from Manoj Srivastava.
 2009-11-18 22:16:47 +00:00
Daniel J Walsh
a5bd29455e - Upgrade to latest from NSA 
Add pkgconfig file from Eamon Walsh.
 2009-11-02 18:11:36 +00:00
Daniel J Walsh
7f9cab778e - Upgrade to latest from NSA 
Add pkgconfig file from Eamon Walsh.
 2009-11-02 18:00:00 +00:00
Daniel J Walsh
31a56530a4 - Upgrade to latest from NSA 
Add support for building Xen policies from Paul Nuzzi.
 2009-10-29 19:27:40 +00:00
Daniel J Walsh
ad2013ee23 - Upgrade to latest from NSA 
Check last offset in the module package against the file size. Reported by
    Manoj Srivastava for bug filed by Max Kellermann.
 2009-09-08 13:08:11 +00:00
Jesse Keating
be396c6d8c - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild 2009-07-25 08:36:05 +00:00
Daniel J Walsh
cd4e504b6b - Upgrade to latest from NSA 
Add method to check disable dontaudit flag from Christopher Pardy.
 2009-07-07 19:33:40 +00:00
Daniel J Walsh
4ce335c44c - Upgrade to latest from NSA 
Fix boolean state smashing from Joshua Brindle.
 2009-03-25 20:37:52 +00:00
Daniel J Walsh
a2f29b67b1 - Fix license specification to be LGPL instead of GPL 2009-03-05 20:17:12 +00:00
Jesse Keating
47d254b60b - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild 2009-02-25 18:02:46 +00:00
Daniel J Walsh
848ca5cad6 - Upgrade to latest from NSA 
Fix alias field in module format, caused by boundary format change from
    Caleb Case.
 2009-02-18 21:47:17 +00:00
Daniel J Walsh
d13ce1e89d - Upgrade to latest from NSA 
Add bounds support from KaiGai Kohei.
Fix invalid aliases bug from Joshua Brindle.
 2008-11-07 14:11:04 +00:00
Daniel J Walsh
f25671b55a - Upgrade to latest from NSA 
Revert patch that removed expand_rule.
 2008-09-30 13:31:29 +00:00
Daniel J Walsh
962484ceef - Upgrade to latest from NSA 
Allow require then declare in the source policy from Joshua Brindle.
 2008-07-07 17:51:57 +00:00
Daniel J Walsh
38eb295021 - Upgrade to latest from NSA 
Fix mls_semantic_level_expand() to handle a user require w/o MLS
    information from Stephen Smalley.
 2008-06-22 13:52:55 +00:00
Daniel J Walsh
d7c858894a - Upgrade to latest from NSA 
Fix endianness bug in the handling of network node addresses from Stephen
    Smalley. Only affects big endian platforms. Bug reported by John Weeks
    of Sun upon policy mismatch between x86 and sparc.
 2008-06-11 12:16:46 +00:00
Daniel J Walsh
073e5ba19d - Upgrade to latest from NSA 
Merge user and role mapping support from Joshua Brindle.
 2008-05-28 14:18:54 +00:00
Daniel J Walsh
0f848837f2 - Upgrade to latest from NSA 
Merge user and role mapping support from Joshua Brindle.
 2008-05-28 14:16:58 +00:00
Daniel J Walsh
5249d73d8d - Upgrade to latest from NSA 
Fix mls_level_convert() to gracefully handle an empty user
    declaration/require from Stephen Smalley.
Belatedly merge test for policy downgrade from Todd Miller.
 2008-05-19 17:19:04 +00:00
Daniel J Walsh
f21dcfb077 - Upgrade to latest from NSA 
Add permissive domain support from Eric Paris.
 2008-03-27 17:22:50 +00:00
Daniel J Walsh
c5d82f51bd - Upgrade to latest from NSA 
Drop unused ->buffer field from struct policy_file.
Add policy_file_init() initalizer for struct policy_file and use it, from
    Todd C. Miller.
 2008-03-13 23:46:46 +00:00
Daniel J Walsh
e6e6048d2a - Upgrade to latest from NSA 
Accept "Flask" as an alternate identifier string in kernel policies from
    Stephen Smalley.
Add support for open_perms policy capability from Eric Paris.
 2008-02-28 21:02:13 +00:00
Daniel J Walsh
c24f89b2b2 - Upgrade to latest from NSA 
Fix invalid memory allocation in policydb_index_others() from Jason Tang.
 2008-02-20 18:48:48 +00:00
Daniel J Walsh
d0df7f69ca - Upgrade to latest from NSA 
Port of Yuichi Nakamura's tune avtab to reduce memory usage patch from the
    kernel avtab to libsepol from Stephen Smalley.
 2008-02-04 17:22:25 +00:00
Daniel J Walsh
8f9d76f061 - Upgrade to latest from NSA 
Add support for consuming avrule_blocks during expansion to reduce peak
    memory usage.
 2008-02-02 21:41:20 +00:00
Daniel J Walsh
0ca4a0a26c - Upgrade to latest from NSA 
Add support for consuming avrule_blocks during expansion to reduce peak
    memory usage.
 2008-02-02 21:39:44 +00:00
Daniel J Walsh
3e3efa7317 - Fixed for spec review 2008-01-21 20:56:18 +00:00
Daniel J Walsh
0ab5c85098 - Fixed for spec review 2008-01-21 20:42:49 +00:00
Daniel J Walsh
66f43a65e2 - Upgrade to latest from NSA 
Added support for policy capabilities from Todd Miller.
Prevent generation of policy.18 with MLS enabled from Todd Miller.
 2008-01-11 18:52:04 +00:00
Daniel J Walsh
a98dcaf709 - Upgrade to latest from NSA 
print module magic number in hex on mismatch, from Todd Miller.
 2007-12-11 02:53:58 +00:00
Daniel J Walsh
f823e8b3e9 - Upgrade to latest from NSA 
clarify and reduce neverallow error reporting from Stephen Smalley.
 2007-11-30 20:09:52 +00:00
Daniel J Walsh
54e869d983 - Upgrade to latest from NSA 
Reject self aliasing at link time from Stephen Smalley.
Allow handle_unknown in base to be overridden by semanage.conf from Stephen
    Smalley.
Fixed bug in require checking from Stephen Smalley.
Added user hierarchy checking from Todd Miller.
 2007-11-06 17:55:04 +00:00
Bill Nottingham
ab03ce91c3 makefile update to properly grab makefile.common 2007-10-15 19:04:19 +00:00
Daniel J Walsh
cd3ee0bcf9 Pass CFLAGS to CC even on link command, per Dennis Gilmore. 2007-09-27 00:23:36 +00:00
Daniel J Walsh
340f7ecf02 - Upgrade to latest from NSA 
Merged support for the handle_unknown policydb flag from Eric Paris.
 2007-09-18 20:29:51 +00:00
Daniel J Walsh
9b4f035756 - Upgrade to latest from NSA 
Moved next_entry and put_entry out-of-line to reduce code size from Ulrich
    Drepper.
Fixed module_package_read_offsets bug introduced by the prior patch.
 2007-08-31 14:16:54 +00:00
Daniel J Walsh
e034fd16cd - Upgrade to latest from NSA 
Moved next_entry and put_entry out-of-line to reduce code size from Ulrich
    Drepper.
Fixed module_package_read_offsets bug introduced by the prior patch.
 2007-08-31 12:42:21 +00:00
Daniel J Walsh
b79588c078 - Upgrade to latest from NSA 
Eliminate unaligned accesses from policy reading code from Stephen Smalley.
 2007-08-28 17:35:57 +00:00