-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gienek Nowacki wrote:
> Hi,
>
> I would like to build my own SE module. The system is CentOS 5.1. The
> source of the module is as follow:
>
> # ============ amav.te ===================
>
> module amav 1.0.0;
> require {
> type amavis_t;
> };
> corenet_udp_bind_generic_port(amavis_t);
> corenet_dontaudit_udp_bind_all_ports(amavis_t);
>
> # ====================================
>
> After running the command:
> checkmodule -M -m -o amav.mod amav.te
>
> ....there is `syntax error' - checkmodule doasn't recognize
> corenet_* statements.
>
> Next, after successful I would like to use semodule_package and
> semodule commands.
>
> The purpose of creating such modul is because amavisd use random UDP
> source ports when connecting to DNS serwer.
>
> Could you help me how - how there is possible to find the solution?
>
> Gienek
>
> --
> This message was distributed to subscribers of the selinux mailing list.
> If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
> the words "unsubscribe selinux" without quotes as the message.
You need to build with the interace files.
# yum install selinux-policy-devel
# make -f /usr/share/selinux/devel/Makefile
Should build your module.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkfNWBYACgkQrlYvE4MpobNExgCbBr4rqoz1r/Md9g4DMBjdgXaL
kOwAn1w0cj49wR5IOaemfb8MihbDinSC
=A0HS
-----END PGP SIGNATURE-----
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
