aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux/hooks.c
diff options
context:
space:
mode:
authorChristian Göttsche <[email protected]>2024-10-23 15:27:10 +0000
committerPaul Moore <[email protected]>2024-12-13 21:35:38 +0000
commit4aa176193475d37441cc52b84088542f3a59899a (patch)
treea7db1ea0ce0e051b8b08e07833db31888fd5f8b1 /security/selinux/hooks.c
parentselinux: Fix SCTP error inconsistency in selinux_socket_bind() (diff)
downloadkernel-4aa176193475d37441cc52b84088542f3a59899a.tar.gz
kernel-4aa176193475d37441cc52b84088542f3a59899a.zip
selinux: add support for xperms in conditional policies
Add support for extended permission rules in conditional policies. Currently the kernel accepts such rules already, but evaluating a security decision will hit a BUG() in services_compute_xperms_decision(). Thus reject extended permission rules in conditional policies for current policy versions. Add a new policy version for this feature. Signed-off-by: Christian Göttsche <[email protected]> Acked-by: Stephen Smalley <[email protected]> Tested-by: Stephen Smalley <[email protected]> Signed-off-by: Paul Moore <[email protected]>
Diffstat (limited to 'security/selinux/hooks.c')
0 files changed, 0 insertions, 0 deletions
generated by cgit (git 2.51.2) at 2025-12-01 09:14:04 +0000