Commit Graph

4631 Commits

Author SHA1 Message Date
Chris PeBenito
c3c58c5d8e move in rule from hotplug 2005-05-02 18:37:24 +00:00
Chris PeBenito
1b909968df add in missing policy_module line 2005-05-02 18:36:51 +00:00
Chris PeBenito
fc83dba9a0 domains not needed for execute interface 2005-05-02 18:36:11 +00:00
Chris PeBenito
85bd7f1ffa add in transition and execute interfaces, and newrole sigchld interface 2005-05-02 18:18:45 +00:00
Chris PeBenito
5eafc37492 add append to /dev/null write 2005-05-02 15:42:20 +00:00
Chris PeBenito
f48a2aa49a many updates 2005-04-29 21:54:06 +00:00
Chris PeBenito
e9a6fcb8f1 fix privfd 2005-04-29 21:00:40 +00:00
Chris PeBenito
4472f3ec01 doh 2005-04-29 21:00:29 +00:00
Chris PeBenito
7009881cc0 add in missing devices 2005-04-29 20:35:49 +00:00
Chris PeBenito
05a5cdccc3 add a few missing ports, and ppp_device_t 2005-04-29 20:22:04 +00:00
Chris PeBenito
a7ed44d531 initial commit 2005-04-29 20:16:38 +00:00
Chris PeBenito
0fbfa546bd initial commit 2005-04-29 17:45:15 +00:00
Chris PeBenito
86f02eb523 add original strict policy source 2005-04-29 17:36:54 +00:00
Chris PeBenito
a2d8246bf6 make mountpoints work, plus misc 2005-04-28 21:41:09 +00:00
Chris PeBenito
07efe969fe initial local login commit 2005-04-28 19:50:58 +00:00
Chris PeBenito
ee5772e455 add bulk of selinux module policy, and add required interfaces 2005-04-28 18:59:01 +00:00
Chris PeBenito
f9cfa192a4 minor fixes 2005-04-28 18:58:39 +00:00
Chris PeBenito
b5860610b4 missed that sysctl_dev is a dir too 2005-04-28 15:52:42 +00:00
Chris PeBenito
3009816bcd convert over optional policy to optional_policy macro 2005-04-28 15:48:27 +00:00
Chris PeBenito
55a46da18a add console setattr if 2005-04-28 15:47:50 +00:00
Chris PeBenito
4fbd2ee111 remove entrypoint assertion 2005-04-28 15:46:53 +00:00
Chris PeBenito
4600e08867 reorganize the policy 2005-04-28 15:46:23 +00:00
Chris PeBenito
dfb86adde5 initial commit 2005-04-28 15:45:32 +00:00
Chris PeBenito
b5ab18b3f1 initial commit 2005-04-28 13:41:37 +00:00
Chris PeBenito
55f4564e31 start merging in rules from daemon domain 2005-04-27 21:56:41 +00:00
Chris PeBenito
889c9a9789 add init_t:fd use interface and initrc pty rw interface 2005-04-27 21:56:12 +00:00
Chris PeBenito
bcd35991d1 daemon domain allows noatsecure siginh rlimitinh, not dontaudit 2005-04-27 21:55:18 +00:00
Chris PeBenito
8119850297 add console dontaudit 2005-04-27 21:54:39 +00:00
Chris PeBenito
835b6ab31b initial commit 2005-04-27 18:17:25 +00:00
Chris PeBenito
9e19eb3c68 add docs 2005-04-27 14:21:55 +00:00
Chris PeBenito
3016a9ff95 initial commit 2005-04-26 21:12:52 +00:00
Chris PeBenito
f9438fdfd1 add search all dirs 2005-04-26 21:12:32 +00:00
Chris PeBenito
e064a64b0e move system_chkpwd to fix ordering issue with checkpolicy 2005-04-26 21:10:11 +00:00
Chris PeBenito
8beec89d27 add legacy lib use 2005-04-26 19:10:29 +00:00
Chris PeBenito
960373dddd add module statement macro and entrypoint executable attribute to replicate
can_exec($1,exec_type)
2005-04-26 17:00:25 +00:00
Chris PeBenito
94edcc5c83 fix tmp_domain 2005-04-25 21:44:48 +00:00
Chris PeBenito
5f75f56066 move modules_object_t back to bootloader 2005-04-25 21:32:09 +00:00
Chris PeBenito
91a7ab6cb3 add sysnetwork 2005-04-25 21:28:25 +00:00
Chris PeBenito
b303042477 add missing transition dontaudits 2005-04-25 21:07:59 +00:00
Chris PeBenito
549180e874 initial commit 2005-04-25 20:13:45 +00:00
Chris PeBenito
219bcf7a8f attack with sediff, make fs:getattr interfaces consistent, create init and
daemon domains
2005-04-25 19:54:27 +00:00
Chris PeBenito
a266e3cc83 restructure kernel module to be consistent with other module ordering. put
in missing rules.  fix naming problems
2005-04-25 16:11:21 +00:00
Chris PeBenito
343a231d5f reorg 2005-04-22 22:00:09 +00:00
Chris PeBenito
22e1131e23 fix te trans error 2005-04-22 22:00:02 +00:00
Chris PeBenito
8a0da1086c make getattr and setattr interfaces and make naming consistent 2005-04-22 19:31:32 +00:00
Chris PeBenito
33bc0dd994 clean up some filesystem assoc 2005-04-21 22:46:49 +00:00
Chris PeBenito
0e730cc8e1 complete corenetwork 2005-04-21 21:53:15 +00:00
Chris PeBenito
1f7b37c585 insmod can be run directly from kernel; fix update_modules errors 2005-04-21 21:35:45 +00:00
Chris PeBenito
9eb5e812fe exec and transition interfaces, plus include mod object symlinks in reading modules 2005-04-21 21:34:47 +00:00
Chris PeBenito
32b5029cc5 uncomment test file 2005-04-21 21:34:08 +00:00