On Wed, 2013-10-23 at 13:00 -0400, James Carter wrote: > > I am sorry. I got so caught up in the painful memories of having to deal with > the selinux_labeled_boolean interface that I missed what you were actually > trying to do. > > What you want to do here is quite reasonable and we should make it possible in CIL. > > Thanks again for the feedback. > I am not sure if it makes sense to make this work, as it sets a precedence. I mean whats next: specify file contexts via macros? The nature of CIL will make it easy to do this manually instead: consider module "mybool": > (type mybool_t) > (call selinux_boolean_type (mybool_t)) > (genfscon "selinuxfs" "/booleans/mybool" (system_u object_r > mybool_t ((s0) (s0)))) -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
