On Tue, 2011-11-22 at 20:25 +0100, Bhargava Shastry wrote: > Thanks for pointing out. I am getting myself acquainted with SELinux > policy semantics to be able to start from scratch. I have one question > though and the answer to this would make my task of creating an > Android specific policy much smoother. > I had previously loaded an Ubuntu SELinux policy on Android and it > seemed to label all the filesystems correctly (except yaffs). I would > like to diff a very basic policy (i.e., mdp output) with the default > ubuntu policy so that I would get an idea of how filesystems are being > labeled and how transitions are handled among other things; basically > to learn from a delta between the two files. To do this, I need > sources for Ubuntu-SELinux policy (in order to compile a > policy.conf) . I have somehow not been able to locate the source for > the policy binary that ubuntu uses (I looked in the /etc/selinux dir > to no avail). Any ideas as to where I can find them? Alternatively, is > there a tool to reverse engineer policy.conf from the policy binary > (e.g. policy.24)? You need the source package. selinux-policy-src? setools has a variety of tools that allow you to inspect a policy, even a binary one. seinfo, sesearch, apol, etc. -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
