[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: SELinux Module Packaging in FC5



Paul Howarth wrote:
Stephen Smalley wrote:
On Tue, 2006-05-16 at 17:33 +0100, Paul Howarth wrote:
It contains a policy module, but the module only includes file contexts.

Clarification:  it is a policy package (.pp), but the policy package
only includes file contexts.  The module itself is just the .mod file
created by checkmodule; it never includes file contexts.

Ah, right, thanks for the clarification.

If this is going to be common, then semodule_package and libsemanage
need to allow for policy packages that have no policy module.

Is the absence of a policy module the actual cause of this error? If so, would having a "dummy" policy module that was effectively a no-op (e.g. by including an allow rule that was already in the base policy) be a usable workaround?

Should this be bugzilla-ed?

Paul.


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]