Differnece from v0
--------------------
Uncount attributes number before converting endianness.
Tests I've done
-----------------
1. Apply the role attribute test patch from Chris, adding a new test_r
role and calls rpm_run() for it.
2. Use the apol tool to analyze what types the test_r role could type with:
(Since the apol installed on Ubuntu so far only support max version .24,
we need to setup "policy-version = 24" in semanage.conf)
Note: there is no role attributes such as portage/semanage/rpm_roles
in policy.24
test_r (36 types)
bootloader_t
chfn_t
chkpwd_t
consoletype_t
ddclient_t
depmod_t
dhcpc_t
groupadd_t
hostname_t
ifconfig_t
insmod_t
iptables_t
ldconfig_t
load_policy_t
loadkeys_t
lvm_t
netutils_t
newrole_t
nscd_t
pam_t
passwd_t
ping_t
pppd_t
pptp_t
prelink_t
rpm_script_t
rpm_t
semanage_t
setfiles_t
test_t
traceroute_t
tzdata_t
updpwd_t
useradd_t
usernetctl_t
utempter_t
3. Use the apol tool to anaylze the domain transitions starting from test_t:
test_t -> rpm_t -> rpm_script_t -> semanage_t -> load_policy_t
-> setfiles_t
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
