SELinux binary policy manipulation library
92502fe369
This patch add libsepol support for filename_trans rules. These rules allow on to make labeling decisions for new objects based partially on the last path component. They are stored in a list. If we find that the number of rules grows to an significant size I will likely choose to store these in a hash, both in libsepol and in the kernel. But as long as the number of such rules stays small, this should be good. |
||
|---|---|---|
| .gitignore | ||
| libsepol-rhat.patch | ||
| libsepol.spec | ||
| sources | ||