| Message ID | 20200709075056.1670642-1-dominick.grift@defensec.nl (mailing list archive) |
|---|---|
| State | Accepted |
| Headers | show |
| Series | [SELinux-notebook] auditing.md: describe avc record permissive keyword | expand |
On Thu, 2020-07-09 at 09:50 +0200, Dominick Grift wrote: > This was added to Linux 4.17 via "selinux: Report permissive mode in > avc: denied messages." > > Signed-off-by: Dominick Grift <dominick.grift@defensec.nl> > --- > src/auditing.md | 6 ++++++ > 1 file changed, 6 insertions(+) > Acked-by: Richard Haines <richard_c_haines@btinternet.com> > diff --git a/src/auditing.md b/src/auditing.md > index 19f8be6..295373a 100644 > --- a/src/auditing.md > +++ b/src/auditing.md > @@ -161,6 +161,12 @@ section that follows. > <td>tclass</td> > <td>The object class of the target or object.</td> > </tr> > +<tr> > +<td>permissive</td> > +<td>Keyword introduced in Linux 4.17 to indicate whether the event > +was denied or granted due to global or per-domain permissive > +mode.</td> > +</tr> > </tbody> > </table> >
On Thu, Jul 9, 2020 at 10:14 AM Richard Haines <richard_c_haines@btinternet.com> wrote: > > On Thu, 2020-07-09 at 09:50 +0200, Dominick Grift wrote: > > This was added to Linux 4.17 via "selinux: Report permissive mode in > > avc: denied messages." > > > > Signed-off-by: Dominick Grift <dominick.grift@defensec.nl> > > --- > > src/auditing.md | 6 ++++++ > > 1 file changed, 6 insertions(+) > > > > Acked-by: Richard Haines <richard_c_haines@btinternet.com> Merged into the main branch, thanks Dominick! > > diff --git a/src/auditing.md b/src/auditing.md > > index 19f8be6..295373a 100644 > > --- a/src/auditing.md > > +++ b/src/auditing.md > > @@ -161,6 +161,12 @@ section that follows. > > <td>tclass</td> > > <td>The object class of the target or object.</td> > > </tr> > > +<tr> > > +<td>permissive</td> > > +<td>Keyword introduced in Linux 4.17 to indicate whether the event > > +was denied or granted due to global or per-domain permissive > > +mode.</td> > > +</tr> > > </tbody> > > </table>
diff --git a/src/auditing.md b/src/auditing.md index 19f8be6..295373a 100644 --- a/src/auditing.md +++ b/src/auditing.md @@ -161,6 +161,12 @@ section that follows. <td>tclass</td> <td>The object class of the target or object.</td> </tr> +<tr> +<td>permissive</td> +<td>Keyword introduced in Linux 4.17 to indicate whether the event +was denied or granted due to global or per-domain permissive +mode.</td> +</tr> </tbody> </table>
This was added to Linux 4.17 via "selinux: Report permissive mode in avc: denied messages." Signed-off-by: Dominick Grift <dominick.grift@defensec.nl> --- src/auditing.md | 6 ++++++ 1 file changed, 6 insertions(+)