Ticket #3 (new Bug)

Opened 3 months ago

implement sepol_module_add_check()

Reported by: jbrindle Assigned to: jbrindle
Priority: High Milestone:
Component: compiler Version:
Keywords: Cc:

Description

walk symbol hash tables in module if symbol is declared call security_symbol_add() on the symbol if symbol is an attribute:

call security_type_add_attrib() and security_attrib_addto_type() for each type

walk avrule list:

for each branch:

for each avrule:

for each stype/ttype/class combination:

call security_avrule_add() or security_terule_add()

walk role_trans_rule_list:

for each role/type combination:

call security_role_trans_add()

same for role_allow list