36d6db55b0
See $ cd SELinuxProject/selinux $ git log --pretty=oneline secilc-3.2..32611aea6543 -- secilc
40 lines
1.6 KiB
Diff
40 lines
1.6 KiB
Diff
From 45d7a0a563e16545fe63e8c252492daf9ec845e8 Mon Sep 17 00:00:00 2001
|
|
From: James Carter <jwcart2@gmail.com>
|
|
Date: Tue, 16 Mar 2021 15:19:10 -0400
|
|
Subject: [PATCH] secilc/docs: Lists are now allowed in constraint expressions
|
|
|
|
Update the CIL documentation to show that lists are allowed in
|
|
constraint expressions.
|
|
|
|
Signed-off-by: James Carter <jwcart2@gmail.com>
|
|
---
|
|
secilc/docs/cil_constraint_statements.md | 12 ++++++------
|
|
1 file changed, 6 insertions(+), 6 deletions(-)
|
|
|
|
diff --git a/secilc/docs/cil_constraint_statements.md b/secilc/docs/cil_constraint_statements.md
|
|
index 2dd6e6f022db..358927d63981 100644
|
|
--- a/secilc/docs/cil_constraint_statements.md
|
|
+++ b/secilc/docs/cil_constraint_statements.md
|
|
@@ -34,12 +34,12 @@ Enable constraints to be placed on the specified permissions of the object class
|
|
<p><code> (op u1 u2)</code></p>
|
|
<p><code> (role_op r1 r2)</code></p>
|
|
<p><code> (op t1 t2)</code></p>
|
|
-<p><code> (op u1 user_id)</code></p>
|
|
-<p><code> (op u2 user_id)</code></p>
|
|
-<p><code> (op r1 role_id)</code></p>
|
|
-<p><code> (op r2 role_id)</code></p>
|
|
-<p><code> (op t1 type_id)</code></p>
|
|
-<p><code> (op t2 type_id)</code></p>
|
|
+<p><code> (op u1 user_id | (user_id ...))</code></p>
|
|
+<p><code> (op u2 user_id | (user_id ...))</code></p>
|
|
+<p><code> (op r1 role_id | (role_id ...))</code></p>
|
|
+<p><code> (op r2 role_id | (role_id ...))</code></p>
|
|
+<p><code> (op t1 type_id | (type_id ...))</code></p>
|
|
+<p><code> (op t2 type_id | (type_id ...))</code></p>
|
|
<p>where:</p>
|
|
<p><code> u1, r1, t1 = Source context: user, role or type</code></p>
|
|
<p><code> u2, r2, t2 = Target context: user, role or type</code></p>
|
|
--
|
|
2.32.0
|
|
|