linux/security/selinux/include
Stephen Smalley 626b9740fa selinux: Report permissive mode in avc: denied messages.
We cannot presently tell from an avc: denied message whether access was in
fact denied or was allowed due to global or per-domain permissive mode.
Add a permissive= field to the avc message to reflect this information.

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Acked-by: Eric Paris <eparis@redhat.com>
Signed-off-by: Paul Moore <pmoore@redhat.com>
2014-05-01 14:56:14 -04:00
..
audit.h SELinux: keep the code clean formating and syntax 2008-07-14 15:01:36 +10:00
avc_ss.h selinux: sparse fix: fix several warnings in the security server code 2011-09-09 16:56:32 -07:00
avc.h selinux: Report permissive mode in avc: denied messages. 2014-05-01 14:56:14 -04:00
classmap.h selinux: add the "attach_queue" permission to the "tun_socket" class 2013-01-14 18:16:59 -05:00
conditional.h
initial_sid_to_string.h selinux: const strings in tables 2010-03-08 09:33:53 +11:00
netif.h doc: Update the email address for Paul Moore in various source files 2011-08-01 17:58:33 -07:00
netlabel.h doc: Update the email address for Paul Moore in various source files 2011-08-01 17:58:33 -07:00
netnode.h doc: Update the email address for Paul Moore in various source files 2011-08-01 17:58:33 -07:00
netport.h doc: Update the email address for Paul Moore in various source files 2011-08-01 17:58:33 -07:00
objsec.h SELinux: Fix possible NULL pointer dereference in selinux_inode_permission() 2014-01-12 16:53:13 +07:00
security.h selinux: add gfp argument to security_xfrm_policy_alloc and fix callers 2014-03-10 08:30:02 +01:00
xfrm.h selinux: add gfp argument to security_xfrm_policy_alloc and fix callers 2014-03-10 08:30:02 +01:00