summaryrefslogtreecommitdiff
path: root/src/util/sss_selinux.c
AgeCommit message (Collapse)AuthorFilesLines
2012-07-23Extend category support in SELinux user mapsJan Zeleny1-6/+24
This patch adds the possibility for user/host category attributes to have more than one value. It also fixes semantically wrong evaluation of SELinux map priority.
2012-07-23Added some DEBUG statements into SELinux related codeJan Zeleny1-4/+24
2012-07-18Modify priority evaluation in SELinux user mapsJan Zeleny1-5/+35
The functionality now is following: When rule is being matched, its priority is determined as a combination of user and host specificity (host taking preference). After the rule is matched in provider, only its host priority is stored in sysdb for later usage. When rules are matched in the responder, their user priority is determined. After that their host priority is retrieved directly from sysdb and sum of both priorities is user to determine whether to use that rule or not. If more rules have the same priority, the order given in IPA config is used. https://fedorahosted.org/sssd/ticket/1360 https://fedorahosted.org/sssd/ticket/1395
2012-02-06Added some SELinux-related utility functionsJan Zeleny1-0/+187
generated by cgit (git 2.34.1) at 2024-11-04 21:09:10 +0000