Hello, I am trying to port treysys' fail2ban.[te|fc] (http://oss.tresys.com/repos/refpolicy/trunk/policy/modules/services/) module to use on a debian system as a custom module and am having some problems. I have built a custom module for this system, but I think this case is slightly different because of calls to a few different interfaces (that do exist on the system as installed via the selinux-policy-refpolicy-dev package). When I run: # checkmodule -M -m -o fail2ban.mod fail2ban.te checkmodule: loading policy configuration from fail2ban.te (unknown source)::ERROR 'This block has no require section.' at token 'init_daemon_domain' on line 10: init_daemon_domain(fail2ban_t, fail2ban_exec_t) type fail2ban_exec_t; checkmodule: error(s) encountered while parsing configuration This is obviously because I am not specifying the path to where the init_daemon_domain interface is defined, but I am not sure how to do this. I tried to add require { interface init_daemon_domain; } This does not seem to be the right way to do it either. Any help is appreciated. Sincerely, Dennison Williams -- selinux mailing list selinux@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/selinux
