Hi, I'm making a module on related to gnome.
I want to use interface "gnome_manage_generic_home_content", but checkpolicy complains don't know the interface.
gnome.if in latest refpolicy has "gnome_manage_generic_home_content".
It seems he knows not "gnome_manage_generic_home_content" but "gnome_manage_generic_home_dirs".
################################### module local 1.0;
require { type mytype_t;
class lnk_file { getattr read }; class dir { create open getattr setattr read write link unlink rename search add_name remove_name reparent rmdir lock ioctl };
}
gnome_manage_generic_home_content(mytype_t) #gnome_manage_generic_home_dirs(mytype_t) <- works fine ! #################################### [root@localhost xxx]# make -f /usr/share/selinux/devel/Makefile local.pp Compiling targeted local module /usr/bin/checkmodule: loading policy configuration from tmp/local.tmp local.te:13:ERROR 'syntax error' at token 'gnome_manage_generic_home_content' on line 991:
gnome_manage_generic_home_content(mytype_t) /usr/bin/checkmodule: error(s) encountered while parsing configuration /usr/share/selinux/devel/include/Makefile:154: recipe for target 'tmp/local.mod' failed make: *** [tmp/local.mod] Error 1 #################################### checkpolicy version [fujiwara@localhost ~]$ rpm -qf /usr/bin/checkmodule checkpolicy-2.3-4.fc21.x86_64
On 12/26/2014 08:13 PM, Shintaro Fujiwara wrote:
Hi, I'm making a module on related to gnome.
I want to use interface "gnome_manage_generic_home_content", but checkpolicy complains don't know the interface.
gnome.if in latest refpolicy has "gnome_manage_generic_home_content".
It seems he knows not "gnome_manage_generic_home_content" but "gnome_manage_generic_home_dirs".
################################### module local 1.0;
require { type mytype_t;
class lnk_file { getattr read }; class dir { create open getattr setattr read write link unlink
rename search add_name remove_name reparent rmdir lock ioctl };
}
gnome_manage_generic_home_content(mytype_t) #gnome_manage_generic_home_dirs(mytype_t) <- works fine ! #################################### [root@localhost xxx]# make -f /usr/share/selinux/devel/Makefile local.pp Compiling targeted local module /usr/bin/checkmodule: loading policy configuration from tmp/local.tmp local.te:13:ERROR 'syntax error' at token 'gnome_manage_generic_home_content' on line 991:
gnome_manage_generic_home_content(mytype_t) /usr/bin/checkmodule: error(s) encountered while parsing configuration /usr/share/selinux/devel/include/Makefile:154: recipe for target 'tmp/local.mod' failed make: *** [tmp/local.mod] Error 1 #################################### checkpolicy version [fujiwara@localhost ~]$ rpm -qf /usr/bin/checkmodule checkpolicy-2.3-4.fc21.x86_64
We have
gnome_manage_generic_home_files() gnome_manage_generic_home_dirs()
interfaces for this in Fedora.
-- 日本にヘヴィメタル・ハードロックを根付かせるページ http://heavymetalhardrock.no-ip.info/
世界中でセキュアOSのSELinuxを使いやすくするフリーソフト http://sourceforge.net/projects/segatex/
CMS(PHPとPostgreSQLを使ったフリーソフト) http://sourceforge.net/projects/webon/ https://github.com/intrajp/irforum_jp
-- selinux mailing list selinux@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/selinux
Thanks Miroslav.
I got it.
But, in latest refpolicy, it has gnome_manage_generic_home_content()
[fujiwara@localhost contrib]$ cat -n gnome.if |grep gnome_manage 190 interface(`gnome_manage_gconf_config',` 343 interface(`gnome_manage_config',` 344 refpolicywarn(`$0($*) has been deprecated, use gnome_manage_generic_home_content() instead.') 345 gnome_manage_generic_home_content($1) 359 interface(`gnome_manage_generic_home_content',` 478 interface(`gnome_manage_generic_gconf_home_content',`
Perplexed...
2014-12-29 19:27 GMT+09:00 Miroslav Grepl mgrepl@redhat.com:
On 12/26/2014 08:13 PM, Shintaro Fujiwara wrote:
Hi, I'm making a module on related to gnome.
I want to use interface "gnome_manage_generic_home_content", but checkpolicy complains don't know the interface.
gnome.if in latest refpolicy has "gnome_manage_generic_home_content".
It seems he knows not "gnome_manage_generic_home_content" but "gnome_manage_generic_home_dirs".
################################### module local 1.0;
require { type mytype_t;
class lnk_file { getattr read }; class dir { create open getattr setattr read write link unlink
rename search add_name remove_name reparent rmdir lock ioctl };
}
gnome_manage_generic_home_content(mytype_t) #gnome_manage_generic_home_dirs(mytype_t) <- works fine ! #################################### [root@localhost xxx]# make -f /usr/share/selinux/devel/Makefile local.pp Compiling targeted local module /usr/bin/checkmodule: loading policy configuration from tmp/local.tmp local.te:13:ERROR 'syntax error' at token 'gnome_manage_generic_home_content' on line 991:
gnome_manage_generic_home_content(mytype_t) /usr/bin/checkmodule: error(s) encountered while parsing configuration /usr/share/selinux/devel/include/Makefile:154: recipe for target 'tmp/local.mod' failed make: *** [tmp/local.mod] Error 1 #################################### checkpolicy version [fujiwara@localhost ~]$ rpm -qf /usr/bin/checkmodule checkpolicy-2.3-4.fc21.x86_64
We have
gnome_manage_generic_home_files() gnome_manage_generic_home_dirs()
interfaces for this in Fedora.
-- 日本にヘヴィメタル・ハードロックを根付かせるページ http://heavymetalhardrock.no-ip.info/
世界中でセキュアOSのSELinuxを使いやすくするフリーソフト http://sourceforge.net/projects/segatex/
CMS(PHPとPostgreSQLを使ったフリーソフト) http://sourceforge.net/projects/webon/ https://github.com/intrajp/irforum_jp
-- selinux mailing listselinux@lists.fedoraproject.orghttps://admin.fedoraproject.org/mailman/listinfo/selinux
selinux@lists.fedoraproject.org