GitWeb
Get Gentoo!
gentoo.org sites
gentoo.org
Wiki
Bugs
Forums
Packages
Planet
Archives
Sources
Infra Status
Home
Gentoo Repository
Repositories
Projects
Developer Overlays
User Overlays
Data
Websites
index
:
proj/hardened-refpolicy.git
concord-dev
mailinfra
master
secmodel
Gentoo Hardened SELinux reference policy implementation
Sven Vermeulen <swift@gentoo.org>
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
policy
/
flask
Commit message (
Expand
)
Author
Age
Files
Lines
*
access_vectors: define io_uring { cmd }
Christian Göttsche
2024-03-01
1
-0
/
+1
*
Define user_namespace object class.
Chris PeBenito
2023-03-31
2
-0
/
+7
*
flask: add new kernel security classes
Christian Göttsche
2022-03-30
2
-2
/
+19
*
access_vectors: Add new capabilities to cap2
Dannick Pomerleau
2020-11-16
1
-1
/
+4
*
define lockdown class and access
bauen1
2020-08-09
2
-0
/
+8
*
Add perf_event access vectors.
Chris PeBenito
2020-02-15
2
-0
/
+12
*
Rename obsolete netlink_firewall_socket and netlink_ip6fw_socket classes
Stephen Smalley
2020-02-15
2
-4
/
+4
*
access_vectors: remove flow_in and flow_out permissions from packet class
Stephen Smalley
2020-02-15
1
-2
/
+0
*
access_vectors: Remove entrypoint and execute_no_trans from chr_file
Stephen Smalley
2020-02-15
1
-4
/
+0
*
access_vectors: Remove unused permissions
Stephen Smalley
2020-02-15
1
-26
/
+0
*
Fix file common ordering and kernel version from previous commit.
Chris PeBenito
2019-12-16
1
-1
/
+1
*
Add file and filesystem watch access vectors.
Chris PeBenito
2019-12-16
1
-0
/
+6
*
Move open, audit_access, and execmod to file common.
Chris PeBenito
2019-12-16
1
-29
/
+3
*
Remove incorrect comment about capability2:mac_admin.
Chris PeBenito
2019-03-25
1
-1
/
+1
*
Add xdp_socket security class and access vectors
Laurent Bigonville
2018-11-12
2
-0
/
+5
*
Remove unused translate permission in context userspace class.
Chris PeBenito
2018-11-12
1
-1
/
+1
*
refpolicy: Update for kernel sctp support
Richard Haines
2018-06-14
1
-0
/
+2
*
Remove deprecated flask.py script.
Chris PeBenito
2018-06-08
2
-587
/
+0
*
Revert "refpolicy: Update for kernel sctp support"
Jason Zaman
2018-04-22
1
-2
/
+0
*
add definition of bpf class and systemd perms
Christian Göttsche
2018-03-25
2
-0
/
+11
*
refpolicy: Update for kernel sctp support
Richard Haines
2018-03-25
1
-0
/
+2
*
Add nnp_nosuid_transition policycap and related class/perm definitions.
Chris PeBenito
2017-09-09
2
-0
/
+7
*
refpolicy: Define and allow map permission
Stephen Smalley
2017-05-26
1
-0
/
+2
*
refpolicy: Infiniband pkeys and endports
Daniel Jurgens
2017-05-26
2
-0
/
+14
*
refpolicy: Define smc_socket security class
Stephen Smalley
2017-05-18
2
-0
/
+4
*
refpolicy: Define getrlimit permission for class process
Stephen Smalley
2017-05-18
1
-0
/
+1
*
refpolicy: drop unused socket security classes
Stephen Smalley
2017-01-23
2
-12
/
+0
*
refpolicy: Define extended_socket_class policy capability and socket classes
Stephen Smalley
2016-12-11
2
-0
/
+150
*
remove trailing whitespaces
cgzones
2016-12-08
3
-8
/
+8
*
Add module_load permission to class system
Guido Trentalancia
2016-08-14
1
-0
/
+1
*
Add the validate_trans access vector to the security class
Laurent Bigonville
2016-05-13
1
-0
/
+1
*
Add user namespace capability object classes.
Chris PeBenito
2016-05-13
2
-49
/
+72
*
Add systemd access vectors.
Chris PeBenito
2015-10-26
2
-0
/
+23
*
Update netlink socket classes.
Stephen Smalley
2015-05-22
2
-0
/
+34
*
Add "binder" security class and access vectors
Laurent Bigonville
2015-05-22
2
-0
/
+10
*
Add new audit_read access vector in capability2 class
Laurent Bigonville
2014-11-22
1
-0
/
+1
*
Renamed db_type to db_datatype, to avoid confusion with SELinux "type"
Artyom Smirnov
2014-06-25
2
-2
/
+2
*
Fixes for db_domain and db_exception
Artyom Smirnov
2014-06-25
2
-2
/
+8
*
New database object classes
Artyom Smirnov
2014-06-25
2
-0
/
+8
*
flask: add the attach_queue permission to the tun_socket object class
Paul Moore
2013-02-04
1
-0
/
+3
*
backport from refpolicy - rename epollwakeup capability2 permission to block_...
Sven Vermeulen
2012-07-25
1
-1
/
+1
*
Update object class for new wake_alarm and epollwakeup capabilities
Sven Vermeulen
2012-06-24
1
-0
/
+2
*
SEPostgresql changes frmo Kohei KaiGai (backport)
Sven Vermeulen
2012-05-28
1
-3
/
+1
*
Who uses html pages to embed python code in... oh right, we do
Sven Vermeulen
2012-05-01
1
-2
/
+2
*
Pushing 2.20120215 (current version)
Sven Vermeulen
2012-04-21
5
-0
/
+1620