You may or may not know that i have been writing some policy using secilc. My first endeavor was basically writing policy in CIL the refpolicy way: https://github.com/doverride/monogam This policy works *fine* Note though that i abandoned this and so it is not tested using the latest secilc revision. My latest attempt involves using secilc specific techniques like namespaces/containers. I also use some other ideas in this policy like defaultrole to override object_r role identifier This policy is *tested* using the latest available secilc revision. https://github.com/doverride/bugexamplepolicy With this latest policy i am encountering issues which are described here: https://github.com/doverride/bugexamplepolicy/commit/8948468038509b075960658aa161eab883ff4c94 One of the two issues described in above URL is demo'd here: http://www.youtube.com/watch?v=g16sj92V3hA&list=UU4xxwsgGTUgFkEHJSQcf7AA I hope to have provided you with sufficient information to allow you to identify the issues. All the source files are there. If you need further information please do not hesitate to ask. _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
