Stephen Smalley wrote: > This happens on the success path too - thereby clearing the policycaps > before they are written out to the kernel policy file. Which would > explain why Paul doesn't see anything kernel side. > > If dismod/dispol had support for displaying the bitmap, you'd be able > to see that more easily... > >> free(state.typemap); >> free(state.boolmap); >> return retval; Yes, I realized that earlier today. I'm actually in the process of packing up an updated patch set that includes dismod/dispol support. - todd -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
