tequilaOS/platform_external_selinux
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_external_selinux/checkpolicy
History
Stephen Smalley 2c1979f0a6 Extend checkpolicy pathname matching. 
checkpolicy currently imposes arbitrary limits on pathnames used
in genfscon and other statements.  This prevents specifying certain
paths in /proc such as those containing comma (,) characters.

Generalize the PATH, QPATH, and FILENAME patterns to support most
legal pathnames.

For simplicity, we do not support pathnames containing newlines or
quotes.

Reported-by: Inamdar Sharif <isharif@nvidia.com>
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
2016-07-14 11:41:28 -04:00
..
test checkpolicy: Fix typos in test/dispol 2016-06-23 12:52:36 -04:00
.gitignore Repo: update .gitignore 2011-08-02 13:31:51 -04:00
Android.mk libsepol,checkpolicy,secilc: Replace #ifdef DARWIN with __APPLE__. 2016-05-03 11:54:20 -04:00
ChangeLog Updated checkpolicy ChangeLog. 2016-06-23 12:52:58 -04:00
checkmodule.8 checkpolicy: Add support for generating CIL 2015-04-01 13:09:26 -04:00
checkmodule.c checkpolicy: Fix checkmodule output message 2016-05-16 16:33:29 -04:00
checkpolicy.8 checkpolicy: Add support for generating CIL 2015-04-01 13:09:26 -04:00
checkpolicy.c libsepol,checkpolicy,secilc: Replace #ifdef DARWIN with __APPLE__. 2016-05-03 11:54:20 -04:00
checkpolicy.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
COPYING initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
Makefile checkpolicy: set flex as default lexer 2016-05-19 14:16:04 -04:00
module_compiler.c Fix -Wreturn-type issues. 2015-06-12 08:35:22 -04:00
module_compiler.h checkpolicy: Separate tunable from boolean during compile. 2011-09-16 11:54:01 -04:00
parse_util.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
parse_util.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
policy_define.c libsepol,checkpolicy,secilc: Replace #ifdef DARWIN with __APPLE__. 2016-05-03 11:54:20 -04:00
policy_define.h checkpolicy: switch operations to extended perms 2015-06-15 09:21:20 -04:00
policy_parse.y Add neverallow support for ioctl extended permissions 2015-09-22 10:52:47 -04:00
policy_scan.l Extend checkpolicy pathname matching. 2016-07-14 11:41:28 -04:00
queue.c initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
queue.h initial import from svn trunk revision 2950 2008-08-19 15:30:36 -04:00
VERSION Update ChangeLog and VERSION for final release 2016-02-23 11:31:41 -05:00