diff options
| author | Andrew Perepechko <anserper@ya.ru> | 2015-12-24 11:09:41 -0500 | 
|---|---|---|
| committer | Paul Moore <pmoore@redhat.com> | 2015-12-24 11:09:41 -0500 | 
| commit | f9df6458218f4fe8a1c3bf0af89c1fa9eaf0db39 (patch) | |
| tree | bed3081497a3b7a628fe77f919514e01650d4d8a /scripts/gdb/linux/modules.py | |
| parent | f39814f60ad0fa982ac87a97af1fb0bde244c319 (diff) | |
selinux: export validatetrans decisions
Make validatetrans decisions available through selinuxfs.
"/validatetrans" is added to selinuxfs for this purpose.
This functionality is needed by file system servers
implemented in userspace or kernelspace without the VFS
layer.
Writing "$oldcontext $newcontext $tclass $taskcontext"
to /validatetrans is expected to return 0 if the transition
is allowed and -EPERM otherwise.
Signed-off-by: Andrew Perepechko <anserper@ya.ru>
CC: andrew.perepechko@seagate.com
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: Paul Moore <pmoore@redhat.com>
Diffstat (limited to 'scripts/gdb/linux/modules.py')
0 files changed, 0 insertions, 0 deletions
