Kernel/linux-next
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git synced 2025-01-01 18:52:02 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
ff914bc51a
linux-next/security/selinux/include
History
Christian Göttsche 4aa1761934 selinux: add support for xperms in conditional policies 
Add support for extended permission rules in conditional policies.
Currently the kernel accepts such rules already, but evaluating a
security decision will hit a BUG() in
services_compute_xperms_decision().  Thus reject extended permission
rules in conditional policies for current policy versions.

Add a new policy version for this feature.

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
Acked-by: Stephen Smalley <stephen.smalley.work@gmail.com>
Tested-by: Stephen Smalley <stephen.smalley.work@gmail.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>
2024-12-13 16:35:38 -05:00
..
audit.h lsm: add lsmprop_to_secctx hook 2024-10-11 14:34:12 -04:00
avc_ss.h selinux: fix style issues in security/selinux/include/avc_ss.h 2023-12-22 18:09:26 -05:00
avc.h selinux: align avc_has_perm_noaudit() prototype with definition 2023-12-22 18:09:26 -05:00
classmap.h selinux: Add netlink xperm support 2024-10-07 16:28:11 -04:00
conditional.h selinux: fix style issues in security/selinux/include/conditional.h 2023-12-22 18:09:27 -05:00
ibpkey.h selinux: make header files self-including 2023-05-18 14:12:43 -04:00
ima.h selinux: fix style issues in security/selinux/include/ima.h 2023-12-22 18:09:28 -05:00
initial_sid_to_string.h selinux: do not include <linux/*.h> headers from host programs 2024-10-03 15:34:24 -04:00
netif.h selinux: fix style issues in security/selinux/include/netif.h 2023-12-22 18:09:28 -05:00
netlabel.h selinux: fix style issues with security/selinux/include/netlabel.h 2023-12-22 18:09:28 -05:00
netnode.h selinux: include necessary headers in headers 2022-05-03 14:11:13 -04:00
netport.h selinux: include necessary headers in headers 2022-05-03 14:11:13 -04:00
objsec.h lsm: infrastructure management of the perf_event security blob 2024-07-29 16:54:52 -04:00
policycap_names.h selinux: Add netlink xperm support 2024-10-07 16:28:11 -04:00
policycap.h selinux: Add netlink xperm support 2024-10-07 16:28:11 -04:00
security.h selinux: add support for xperms in conditional policies 2024-12-13 16:35:38 -05:00
xfrm.h selinux: fix style issues in security/selinux/include/xfrm.h 2023-12-22 18:09:30 -05:00