|
Hello,everyone! I am trying to use the optional file name feature in type_transition rules , And I test it in my OS (with kernel 3.0.76 and selinux userspace 2.1.0 ),
1.
I add the type_tansition rule in my policy like this : filetrans_pattern(unconfined_t,tpm_dentry_t,stmfile_lst_t,file,"123"), It can be compiled and installed successfully But , every files that I creat in the tpm_dentry_t dentry , I will get the stmfile_lst_t type, not just the file named 123
2.
I add two type_tansition rules in my policy like this : filetrans_pattern(unconfined_t,tpm_dentry_t,stmfile_lst_t,file,"123") filetrans_pattern(unconfined_t,tpm_dentry_t,trust_log_t,file,"456") It can be conpiled successfully, But got some error when install libsepol.expand_terule_helper: conflicting TE rule for (unconfined_t, tpm_dentry_t:file): old was stmfile_lst_t, new is trust_log_t libsepol.expand_module: Error during expand libsemanage.semanage_expand_sandbox: Expand module failed semodule: Failed! Can anyone help me with this problem, Thank you! pS: I got the selinux userspace 2.1.0 from here https://github.com/SELinuxProject/selinux/wiki/Releases |
_______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
