5c3211bccad45be0f546dbf976200142d1e4959d - fp2-dev/platform/external/selinux

commit	5c3211bccad45be0f546dbf976200142d1e4959d	[log] [tgz]
author	Eric Paris <eparis@redhat.com>	Tue Nov 01 14:26:52 2011 -0400
committer	Eric Paris <eparis@redhat.com>	Wed Dec 21 12:22:05 2011 -0500
tree	c03494ec75ff044636741e06a7df21fe511e004e
parent	d65c02f066fe8590fb5b5ea7479e47fde06eeb36 [diff]

sepolgen: better analysis of why things broke

combine analysys of audit2why into audit2allow, so users can see if a
boolean would solve an AVC or if it is a constrain violation.  Rather
then blindly adding allow rules to modules.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Dan Walsh <dwalsh@redhat.com>

sepolgen/src/sepolgen/audit.py[diff]
sepolgen/src/sepolgen/policygen.py[diff]

2 files changed

tree: c03494ec75ff044636741e06a7df21fe511e004e

checkpolicy/
libselinux/
libsemanage/
libsepol/
policycoreutils/
scripts/
sepolgen/
.gitignore
Makefile