On Wed, 2007-08-08 at 12:39 -0700, Hal wrote:
I have tryed with logging_send_audit_msgs(local_login_t)
But still: [root@localhost hal]# make -f /usr/share/selinux/devel/Makefile local.pp Compiling strict local module /usr/bin/checkmodule: loading policy configuration from tmp/local.tmp local.te:9:ERROR 'unknown class capability used in rule' at token ';' on line 81105: #line 9 allow local_login_t self:capability audit_write; /usr/bin/checkmodule: error(s) encountered while parsing configuration make: *** [tmp/local.mod] Error 1
I really have no idea what all this means. there is nowhere "allow" in local.te. if it is in this macros at the end... Do I need to install the policy source and edit it?
It is in the interface. You need to change this:
module local 1.0;
to this:
policy_module(local,1.0)
It will automatically require all of the kernel object classes.