projects / platform / kernel / linux-rpi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2fd4e66) | patch
selinux: Report permissive mode in avc: denied messages.
authorStephen Smalley <sds@tycho.nsa.gov>
Tue, 29 Apr 2014 18:29:04 +0000 (11:29 -0700)
committerSerge Hallyn <serge.hallyn@ubuntu.com>
Tue, 3 Jun 2014 19:21:48 +0000 (14:21 -0500)
commitca7786a2f916540931d7114d441efa141c99c898
tree47af90d33b13780b1491cd751d8750a01668b884tree | snapshot
parent2fd4e6698f0863f47558e63b67c7c3a026513541commit | diff
selinux:  Report permissive mode in avc: denied messages.

We cannot presently tell from an avc: denied message whether access was in
fact denied or was allowed due to global or per-domain permissive mode.
Add a permissive= field to the avc message to reflect this information.

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Acked-by: Eric Paris <eparis@redhat.com>
Signed-off-by: Paul Moore <pmoore@redhat.com>
security/selinux/avc.c diff | blob | history
security/selinux/hooks.c diff | blob | history
security/selinux/include/avc.h diff | blob | history
Domain: System / Kernel;