# audit2allow -l < /var/log/audit/audit.log -R
require {
type devicekit_power_t;
}
#============= devicekit_power_t ==============
devicekit_dbus_chat_power(devicekit_power_t)
# audit2allow -l < /var/log/audit/audit.log
#============= devicekit_power_t ==============
allow devicekit_power_t dpkg_script_t:dbus send_msg;
Above is the output of audit2allow. For some reason audit2allow -R is
generating the wrong parameter for devicekit_dbus_chat_power().
Here is the interface in question:
########################################
## <summary>
## Send and receive messages from
## devicekit power over dbus.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed access.
## </summary>
## </param>
#
interface(`devicekit_dbus_chat_power',`
gen_require(`
type devicekit_power_t;
class dbus send_msg;
')
allow $1 devicekit_power_t:dbus send_msg;
allow devicekit_power_t $1:dbus send_msg;
')
Any ideas on how to debug this?
--
My Main Blog http://etbe.coker.com.au/
My Documents Blog http://doc.coker.com.au/
_______________________________________________
Selinux mailing list
Selinux@xxxxxxxxxxxxx
To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx.
To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
