On 8/31/22 13:56, James Carter wrote:
On Tue, Aug 30, 2022 at 4:45 PM James Carter <jwcart2@xxxxxxxxx> wrote:
I don't see this behavior.
The following:
(block b2
(user user2_u)
(userrole user2_u ROLE)
(userlevel user2_u (SENS))
(userrange user2_u ((SENS) (SENS (CAT))))
(userprefix user2_u user2)
(selinuxuser name2 user2_u ((SENS) (SENS (CAT))))
)
Gives me:
name2:b2.user2_u:SENS-SENS:CAT
It works with quotes as well, but it doesn't require them.
The following:
(block b3
(user user3_u)
(userrole user3_u ROLE)
(userlevel user3_u (SENS))
(userrange user3_u ((SENS) (SENS (CAT))))
(userprefix user3_u user3)
(selinuxuser "name3" "user3_u" ((SENS) (SENS (CAT))))
)
Gives me:
name3:b3.user3_u:SENS-SENS:CAT
Thanks,
Jim
Attached is the policy I used to test and a program that calls
cil_selinuxusers_to_string().
Jim
Thanks, I'll take another look at this some time.
Obviously the other patches can be merged independently.
--
bauen1
