| commit | 0fc6c7762c2174a5fb3b978891b0adf8930aa184 | [log] [tgz] |
|---|---|---|
| author | Stephen Smalley <sds@tycho.nsa.gov> | Fri Feb 05 09:24:41 2010 -0500 |
| committer | Stephen Smalley <sds@tycho.nsa.gov> | Mon Feb 22 15:32:05 2010 -0500 |
| tree | c5177261c8725f4b94cbb00cfe277e7ecf67e79f | |
| parent | 9a1814832b7e3b046d8edd5d7691a7a3aae427f6 [diff] |
libselinux: Only audit permissions specified by the policy Only audit the permissions specified by the policy, excluding any permissions specified via dontaudit or not specified via auditallow. This only shows up when a single avc_has_perm() call is made with multiple permissions where some of those permissions are dontaudit'd or auditallow'd while others are not. The corresponding kernel patch has already been applied, see: http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=b6cac5a30b325e14cda425670bb3568d3cad0aa8 Signed-off-by: Stephen D. Smalley <sds@tycho.nsa.gov>