On 11/13/2015 10:28 AM, Dominick Grift wrote: > > This commit added iotctl whitelisting support to CIL: > https://github.com/SELinuxProject/selinux/commit/ef93dfe0393c4a60483c3f7729dd98a2f886606a > > then later CIL whitelisting was extended with neverallow support here: > https://github.com/SELinuxProject/selinux/commit/99fc177b5af4e1e8855d42d2d01cb93ac7f9d14b > > would the CIL ioctl whitelisting support have to be extended with the > ioctl whitelisting neverallow support as well? Yes, that is something we are working on. It should be upstreamed sometime in the next couple of weeks. - Steve _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
