|
On 12/26/2014 08:13 PM, Shintaro
Fujiwara wrote:
Hi, I'm making a module on related to gnome.
I want to use interface
"gnome_manage_generic_home_content", but checkpolicy
complains don't know the interface.
gnome.if in latest refpolicy has
"gnome_manage_generic_home_content".
It seems he knows not "gnome_manage_generic_home_content" but
"gnome_manage_generic_home_dirs".
###################################
module local 1.0;
require {
type mytype_t;
class lnk_file { getattr read };
class dir { create open getattr setattr read
write link unlink rename search add_name remove_name
reparent rmdir lock ioctl };
}
gnome_manage_generic_home_content(mytype_t)
#gnome_manage_generic_home_dirs(mytype_t) <- works
fine !
####################################
[root@localhost xxx]# make -f
/usr/share/selinux/devel/Makefile local.pp
Compiling targeted local module
/usr/bin/checkmodule: loading policy configuration from
tmp/local.tmp
local.te:13:ERROR 'syntax error' at token
'gnome_manage_generic_home_content' on line 991:
gnome_manage_generic_home_content(mytype_t)
/usr/bin/checkmodule: error(s) encountered while
parsing configuration
/usr/share/selinux/devel/include/Makefile:154: recipe
for target 'tmp/local.mod' failed
make: *** [tmp/local.mod] Error 1
####################################
checkpolicy version
[fujiwara@localhost ~]$ rpm -qf /usr/bin/checkmodule
checkpolicy-2.3-4.fc21.x86_64
We have
gnome_manage_generic_home_files()
gnome_manage_generic_home_dirs()
interfaces for this in Fedora.
--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux
|
--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux
