RepoMirrors
/
selinux
mirror of https://github.com/SELinuxProject/selinux
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

policygen: respect CIL option when generating comments 

Make explanatory comments follow the common style of comments (Classic language / CIL)

Signed-off-by: Dmitry Sharshakov <dmitry.sharshakov@siderolabs.com>
Acked-by: James Carter <jwcart2@gmail.com>
This commit is contained in:
Dmitry Sharshakov 2024-08-01 22:32:41 +03:00 committed by James Carter
parent b6910aa68a
commit e79a14c77b
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
python/sepolgen/src/sepolgen/policygen.py
View File

@ -179,7 +179,9 @@ class PolicyGenerator:
rule.rule_type = rule.DONTAUDIT
rule.comment = ""
if self.explain:
rule.comment = str(refpolicy.Comment(explain_access(av, verbosity=self.explain)))
comment = refpolicy.Comment(explain_access(av, verbosity=self.explain))
comment.set_gen_cil(self.gen_cil)
rule.comment = str(comment)
if av.type == audit2why.ALLOW:
rule.comment += "\n%s!!!! This avc is allowed in the current policy" % self.comment_start