On 09/29/2015 04:51 PM, William Roberts wrote:
On Tue, Sep 29, 2015 at 1:25 PM, Stephen Smalley <sds@xxxxxxxxxxxxx <mailto:sds@xxxxxxxxxxxxx>> wrote: On 09/29/2015 04:19 PM, William Roberts wrote: So is this information only available at compile time? I see that the types field is empty for both attributes and types. Perhaps my code is wrong to do this, but I can loop over the ebitmap entries from the attr_type and type_attr maps just fine. Yes, it is discarded from the binary policy, which instead has type_attr_map and attr_type_map. According to a comment in the struct attr_type_map is discarded as well, which would make sense given that the per-attribute type map is thrown away as well. aosp/external/selinux/libsepol/include/sepol$ grep -rn 'attr_type_map' * policydb/policydb.h:575:ebitmap_t *attr_type_map;/* not saved in the binary policy */
It is re-created on load; see policydb_read(). So it is always available to you.
_______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
