aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Makefile: Add -E to setfiles labeling targets.Chris PeBenito2021-01-101-2/+2
| | | | | | | | | | This will cause setfiles to error if there are conflicting labeling specifications for files due to hardlinks. closes #218 Signed-off-by: Chris PeBenito <pebenito@ieee.org> Signed-off-by: Jason Zaman <perfinion@gentoo.org>
* Fix file common ordering and kernel version from previous commit.Chris PeBenito2019-12-161-1/+1
| | | | | Signed-off-by: Chris PeBenito <pebenito@ieee.org> Signed-off-by: Jason Zaman <perfinion@gentoo.org>
* Move open, audit_access, and execmod to file common.Chris PeBenito2019-12-161-0/+3
| | | | | Signed-off-by: Chris PeBenito <chpebeni@linux.microsoft.com> Signed-off-by: Jason Zaman <perfinion@gentoo.org>
* re-implement fc_sort in pythonChristian Göttsche2019-12-161-1/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | fc_sort is the only/last build tool that requires a C compiler Re-implement it in python, so that gcc dependencies can be dropped The output of the C and the python version differ slightly in the order of equally specific file contexts old: /.* system_u:object_r:default_t /sys(/.*)? system_u:object_r:sysfs_t /mnt(/[^/]*) -l system_u:object_r:mnt_t /mnt(/[^/]*)? -d system_u:object_r:mnt_t /opt/.* system_u:object_r:usr_t /var/.* system_u:object_r:var_t /usr/.* system_u:object_r:usr_t /srv/.* system_u:object_r:var_t /tmp/.* <<none>> /run/.* <<none>> /dev/.* system_u:object_r:device_t /etc/.* system_u:object_r:etc_t new: /.* system_u:object_r:default_t /sys(/.*)? system_u:object_r:sysfs_t /mnt(/[^/]*) -l system_u:object_r:mnt_t /mnt(/[^/]*)? -d system_u:object_r:mnt_t /dev/.* system_u:object_r:device_t /etc/.* system_u:object_r:etc_t /opt/.* system_u:object_r:usr_t /run/.* <<none>> /srv/.* system_u:object_r:var_t /tmp/.* <<none>> /usr/.* system_u:object_r:usr_t /var/.* system_u:object_r:var_t Signed-off-by: Jason Zaman <perfinion@gentoo.org>
* INSTALL: Fix build requirements.Chris PeBenito2019-12-161-4/+1
| | | | | | | Closes #85. Signed-off-by: Chris PeBenito <pebenito@ieee.org> Signed-off-by: Jason Zaman <perfinion@gentoo.org>
* Check the .fc files for common typosNicolas Iooss2019-12-161-0/+3
| | | | | | | | | | | | Writing .fc files without any mistake is quite hard. Sometimes a regular expression pattern compiles fine but it does not match what is intended. Add a script that detects some issues in .fc files. When this script is used directly ("./testing/check_fc_files.py"), it checks the content of policy/. The path to policy/ can also be provided by option -p. Signed-off-by: Nicolas Iooss <nicolas.iooss@m4x.org> Signed-off-by: Jason Zaman <perfinion@gentoo.org>
* Switch all remaining Python references to the Python 3 interpreter.Chris PeBenito2018-06-081-1/+1
|
* Enable extended_socket_class policy capability;Chris PeBenito2017-09-091-1/+1
|
* README: Update build requirements.Chris PeBenito2017-09-091-4/+4
| | | | Closes #124
* Update Python requirement in INSTALLNicolas Iooss2014-11-221-1/+1
| | | | | | | | | | | PyXML has not been required to build the policy and its documentation since at least Python 2.6, which comes with an "xml" module. Moreover, some support scripts requires Python 2.6 or above (and are compatible with Python 3.4, maybe also with other versions of Python 3). Add the minimum supported version of Python in INSTALL. ML thread: http://oss.tresys.com/pipermail/refpolicy/2014-November/007440.html
* Module bumping for 20120725Sven Vermeulen2012-07-261-4/+4
|
* Pushing 2.20120215 (current version)Sven Vermeulen2012-04-211-0/+42