af18b86e0b0893636257725165e69daa6f6dd74d - platform_external_selinux

commit	af18b86e0b0893636257725165e69daa6f6dd74d	[log] [tgz]
author	Gary Tierney <gary.tierney@gmx.com>	Wed Dec 07 12:15:59 2016 +0000
committer	James Carter <jwcart2@tycho.nsa.gov>	Tue Dec 13 10:56:59 2016 -0500
tree	ca30524a00ac9e5babd6d97b949f9a9921aeba90
parent	7179fd8738ee036666ccb17f5e65dab7652bdb51 [diff]

libsepol/cil: remove avrules with no affected types

Adds a check for avrules with type attributes that have a bitmap cardinality
of 0 (i.e., no types in their set) before adding them to the libsepol policy in
__cil_avrule_to_avtab().  Also adds an exception for neverallow rules to
prevent breaking anything from AOSP mentioned in
f9927d9370f90bd9d975ff933fe107ec4f93a9ac.

Signed-off-by: Gary Tierney <gary.tierney@gmx.com>

libsepol/cil/src/cil_binary.c[diff]

1 file changed

tree: ca30524a00ac9e5babd6d97b949f9a9921aeba90

checkpolicy/
dbus/
gui/
libselinux/
libsemanage/
libsepol/
mcstrans/
policycoreutils/
python/
restorecond/
sandbox/
scripts/
secilc/
semodule-utils/
.gitignore
CleanSpec.mk
Makefile
README