RepoMirrors/setools
1
0
Fork 0
mirror of https://github.com/SELinuxProject/setools synced 2025-02-07 07:31:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
316 Commits 8 Branches 22 Tags 3.8 MiB
Python 86.6%
Cython 12.2%
HTML 1.2%
448b8ebeae
Go to file
Chris PeBenito 448b8ebeae PermissionMapTest: add additional unit tests for error cases 
Fix the exposed bugs in PermissionMap.  Add an exception for parse errors
in the permission map file parser, as SyntaxError is not the correct
exception.
2015-04-07 14:40:04 -04:00
data Initial public release. 2014-07-08 14:28:55 -04:00
libqpol Route libqpol meessages through Python logging. 2015-03-21 16:23:59 -04:00
patches Add more info for libsepol patch. 2015-03-31 09:31:56 -04:00
setools PermissionMapTest: add additional unit tests for error cases 2015-04-07 14:40:04 -04:00
tests PermissionMapTest: add additional unit tests for error cases 2015-04-07 14:40:04 -04:00
.coveragerc No coverage for PolicySymbol.__hash__() error path. 2015-03-17 14:49:57 -04:00
.gitignore ignore coverage-generated files 2015-02-16 09:43:21 +01:00
.pylintrc Add pylint configuration. 2015-04-06 09:38:58 -04:00
.travis.yml Add lint to CI. Step back to single coverage test, on Python 3.3. 2015-04-06 10:07:22 -04:00
COPYING Initial public release. 2014-07-08 14:28:55 -04:00
COPYING.GPL Initial public release. 2014-07-08 14:28:55 -04:00
COPYING.LGPL Initial public release. 2014-07-08 14:28:55 -04:00
KNOWN-BUGS Add KNOWN-BUGS. 2015-04-01 09:21:40 -04:00
MANIFEST.in Add copyright files to source distribution. 2014-10-29 14:28:26 -04:00
README.md Further README revision and formatting. 2015-03-31 10:41:20 -04:00
sedta Fully configure logging in CLI tools. 2015-03-25 13:40:03 -04:00
seinfo Address remaining pylint errors. 2015-04-06 09:51:32 -04:00
seinfoflow seinfoflow: remove redundant try block 2015-03-31 15:49:08 -04:00
sesearch Fully configure logging in CLI tools. 2015-03-25 13:40:03 -04:00
setup.py Missed updating version for release. 2015-02-11 14:13:11 -05:00
tox.ini Fix tox lint target on CI. 2015-04-06 10:58:42 -04:00
UNSTABLE_API Rename libapol package to setools. 2014-10-24 21:23:13 -04:00

README.md

SETools: Policy analysis tools for SELinux

https://github.com/TresysTechnology/setools/wiki

Overview

This file describes SETools, developed by Tresys Technology. SETools is a collection of graphical tools, command-line tools, and libraries designed to facilitate SELinux policy analysis. Please consult the KNOWN-BUGS file prior to reporting bugs.

Installation

SETools uses the Python setuptools build system to build, and install. As such it contains a setup.py script that will install the tools.

To run SETools, the following packages are required:

  • Python 2.7 or 3.3+
  • NetworkX 1.8+
  • setuptools
  • libselinux
  • libbz2

To build SETools, the following development packages are required, in addition to the development packages from the above list:

  • gcc
  • bison
  • flex
  • libsepol 2.4+
  • SWIG 2.0.12+ or 3.0+

To run SETools unit tests, the following packages are required, in addition to the above dependencies:

  • mock (on Python 2.7 only)
  • tox (optional)

Building SETools

Unpack the official distribution or check out the git repository, and perform the following at the root:

  $ python setup.py build
  $ python setup.py install

This will put the applications in /usr/bin, data files in /usr/share/setools, and libraries in /usr/lib/pythonX.Y/site-packages/setools.

Installation Options

Please see python setup.py --help or python setup.py install --help for up-to-date information on build and install options, respectively.

Unit Tests

One goal for SETools is to provide confidence in the validity of the output for the tools. The unit tests for SETools can be run with the following command

  $ python setup.py test

Features

SETools encompasses a number of tools, both graphical and command line, and libraries. Many of the programs have help files accessible during runtime.

Graphical tools

TBD

Command-line tools

Some tools in the SETools suite may be run in a terminal environment.

Tool Name Description
sedta A tool to perform domain transition analysis.
seinfo A tool to get a list of policy components.
seinfoflow A tool to perform information flow analysis.
sesearch A tool to search rules (allow, type_transition, etc.)

Analysis Libraries

The SETools libraries are available for use in third-party applications. Although this is are not officially supported (and thus subject to change between SETools releases), we will do our best to maintain API stability.

Obtaining SETools

Official releases of SETools may be freely downloaded from:

https://github.com/TresysTechnology/setools/releases

SETools source code is maintained within a GitHub repository. From the command line do:

  $ git clone https://github.com/TresysTechnology/setools.git

You may also browse the GitHub repository at https://github.com/TresysTechnology/setools.

SETools included in most Linux distributions which support SELinux, such as Fedora, Red Hat Enterprise Linux, Gentoo, and Debian.

Reporting bugs

Bugs can be reported in the SETools GitHub issues tracker:

https://github.com/TresysTechnology/setools/issues

Copyright license

The intent is to allow free use of this source code. All programs' source files are copyright protected and freely distributed under the GNU General Public License (see COPYING.GPL). All library source files are copyright under the GNU Lesser General Public License (see COPYING.LGPL). All files distributed with this package indicate the appropriate license to use. Absolutely no warranty is provided or implied.