| commit | a52bb922f7c6acad2e5912c142f64859c024f22d | [log] [tgz] |
|---|---|---|
| author | Wez <wez@fuchsia.infra.roller.google.com> | Mon Nov 18 16:03:23 2024 +0000 |
| committer | Copybara-Service <copybara-worker@google.com> | Mon Nov 18 08:06:49 2024 -0800 |
| tree | 358f7d98434226a46a5013e36b8a732031064b0e | |
| parent | 09f85a8837f5b9e7daba8ebde2b8848d9e55b30d [diff] |
[roll] Roll fuchsia [sestarnix] Support auditallow and dontaudit statements When calculating the permissions granted to a subject for a given target domain and class, also calculate the sets of permissions that should be audit-logged even when permitted by policy, and those that should never be audit-logged even when denied by policy. The latter "dontaudit" set is notably used to suppress audit log spam for permissive domains, e.g. those typically assigned to the root user. Original-Bug: 362706116, 379153786, 379657220 Original-Reviewed-on: https://fuchsia-review.googlesource.com/c/fuchsia/+/1157452 Original-Revision: d6658cd63a5e66f677037d8873cb29e6a1207e03 GitOrigin-RevId: 1b1b74983f35c06df083d97623cd2e8c987306dd Change-Id: I4e91118e16274f5ed130b60ead93cd49b17d2046
This repository contains Fuchsia's Global Integration manifest files.
All changes should be made to the internal version of this repository. Our infrastructure automatically updates this version when the internal one changes.
Currently all changes must be made by a Google employee. Non-Google employees wishing to make a change can ask for assistance in one of the communication channels documented at get involved.
First install Jiri.
Next run:
$ jiri init $ jiri import minimal https://fuchsia.googlesource.com/integration $ jiri update
Third party projects should have their own subdirectory in ./third_party.