summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2025-08-20fixupJohn Turner
2025-08-20rework how user files workJohn Turner
Instead of assuming all user files exist under $HOME, we create a .file.user module and typeattribute. This allows user files to exist in places outside of $HOME. Also we changed filecon so that $HOME itself is user.home.file rather than home.file.
2025-08-18change "install_sources" option name to "modular"John Turner
2025-08-18allow all subj.common to read sysfsJohn Turner
2025-08-18allow weechat to read /etcJohn Turner
2025-08-18move loader block into fileJohn Turner
2025-08-18fixupJohn Turner
2025-08-18rename irc.cil to reservedportnetirc.cilJohn Turner
2025-08-17create module for the dynamic loaderJohn Turner
2025-08-17create policy for weechatJohn Turner
2025-08-17disable some network checkingJohn Turner
2025-08-17fixupJohn Turner
2025-08-17reserve port for ircJohn Turner
2025-08-17inherit template and add fileconsJohn Turner
2025-08-17add .subj.common abstractionJohn Turner
2025-08-16add map_file_files macro to .fileJohn Turner
2025-08-16auto format all filesJohn Turner
2025-08-15install file_contexts into the correct placeJohn Turner
2025-08-15rename selinux_data_dir to selinux_storeJohn Turner
2025-08-14rm mkiso filesJohn Turner
2025-08-14rm READMEJohn Turner
2025-08-14rewrite build system with mesonJohn Turner
2025-08-13create sshfile typeJohn Turner
2025-08-12move into conffileJohn Turner
2025-08-12move into cgroupseclabelfsJohn Turner
2025-08-12move into certfileJohn Turner
2025-08-12add sanity.sh scriptJohn Turner
2025-08-12move into cachefileJohn Turner
2025-08-12move into bpfnoseclabelfsJohn Turner
2025-08-12move into bootfileJohn Turner
2025-08-12fix dbus_contextsJohn Turner
2025-08-11clean up makefileJohn Turner
2025-08-09rm debianJohn Turner
2025-08-08add format.eldebian/latestJohn Turner
2025-08-08mkosi.conf: systemd-boot-efiDominick Grift
Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
2025-06-19ttyxperm: adds TIOCSERGETLSRDominick Grift
2025-04-27/run/lock fixesDominick Grift
its world writable like /tmp default to none-spec inside there like /tmp
2025-04-23misc.cil typo fixDominick Grift
2025-02-24Makefile: polvers 34Dominick Grift
2025-01-25update mkosiDominick Grift
Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
2025-01-25update yearDominick Grift
Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
2025-01-21sysctlfile is a procfile typeDominick Grift
2025-01-10adds kvm-gmem anon inodeDominick Grift
2024-12-21iouringav: fix dev.unconfinedDominick Grift
Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
2024-12-18clean up dev.unconfined 2Dominick Grift
2024-12-18clean up dev.unconfinedDominick Grift
2024-12-17subj: minor typo fixDominick Grift
Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
2024-11-04mls: support templatesDominick Grift
Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
2024-08-26userspace_initial_context move to miscDominick Grift
2024-08-26support userspace_initial_contextDominick Grift
generated by cgit v1.2.3 (git 2.46.0) at 2025-09-20 20:11:22 +0000