SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Research Skip Research Menus Research Menu Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List RE: audit2allow module generation This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] From: Karl MacMillan <kmacmillan_at_mentalrootkit.com> Date: Thu, 31 May 2007 12:05:42 -0400 On Wed, 2007-05-30 at 10:44 -0400, Anand Patel wrote: > > -----Original Message----- > > From: Karl MacMillan [mailto:kmacmillan@mentalrootkit.com] > > Sent: Tuesday, May 29, 2007 5:12 PM > > To: Anand Patel > > Cc: SE Linux; Daniel J Walsh > > Subject: Re: audit2allow module generation > > > > On Tue, 2007-05-29 at 16:25 -0400, Anand Patel wrote: > > > I am trying to use audit2allow to generate module out of audit > messages. > > > > > > So, I installed refpolicy headers first. Then tried sepolgen-ifgen > > > > > > %sepolgen-ifgen > > > % ... some output ... > > > %parsing file /usr/share/selinux/devel/include/services/snmp.if > > > %error parsing file > /usr/share/selinux/devel/include/services/snmap.if: > > > %could not parse text: "Syntax error on line 1 ( [type=OPAREN]" > > > > > > Parser had problem parsing almost all if files and generated above > > > error. > > > > The problem is that the refpolicy "language" is far from fixed and > > parsing it cleanly is almost impossible because of M4. So the parser > > sometimes gets out of sync with refpolicy (hence the policyrep work). > > > > I just need some more specific information about the refpolicy version > > you are using and I should be able to fix-up the parser. > > I was using current release from oss.tresys.com/projects/refpolicy. > Ok - Chris, any chance you can start running sepolgen-ifgen on refpolicy and alerting me to breakage? > So, every new version of refpolicy will require tweaks to audit2allow > parser. No - only when the refpolicy "language" changes (or there is just a new M4 usage, etc). Basically - I'm trying to parse an informal language based on M4 which is a pain. > What tweaks does it require? Where does it fail? Can you give me > some insight of how parser works? > See refparser.py in sepolgen. Karl > Thanks, > > > > > > Thanks - Karl > > > > > It would been helpful if error included correct line number. > > > Is it parser bug? > > > Am I doing anything wrong? > > > Is there any documentation available on how to use this policy > > > generation tools? > > > What are the dependencies these tools have? > > > > > > > > > Thanks, > > > > > > Anand Patel > > > Tresys Technology > > > apatel@tresys.com > > > 410-290-1411xt153 > > > > > > > Anand Patel > Tresys Technology > apatel@tresys.com > 410-290-1411xt153 -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Thu 31 May 2007 - 12:05:47 EDT This message: [ Message body ] Next message: Pravin: "[RFC] Patch for using SELinux to stop DoS attack" Previous message: Stephen Smalley: "Re: [PATCH] SELinux protection for exploiting null dereference using mmap" In reply to: Anand Patel: "RE: audit2allow module generation" Next in thread: Karl MacMillan: "RE: audit2allow module generation" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom