RepoMirrors
/
selinux
mirror of https://github.com/SELinuxProject/selinux
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
selinux/checkpolicy
History
Masatake YAMATO df0b1929a0 dismod: add --actions option for non-interactive use 
Example session:

    $ ./dismod --help
    Usage:
     ./dismod [OPTIONS] binary_pol_file

    Options:
     -h, --help              print this help message
     -a, --actions ACTIONS   run non-interactively

    Actions:
      1    display unconditional AVTAB
      2    display conditional AVTAB
      3    display users
      4    display bools
      5    display roles
      6    display types, attributes, and aliases
      7    display role transitions
      8    display role allows
      9    Display policycon
      0    Display initial SIDs
      a    Display avrule requirements
      b    Display avrule declarations
      c    Display policy capabilities
      u    Display the unknown handling setting
      F    Display filename_trans rules

    $ ./dismod --actions 16 input.mod
    Reading policy...
    libsepol.policydb_index_others: security:  0 users, 1 roles, 2 types, 0 bools
    libsepol.policydb_index_others: security: 0 sens, 0 cats
    libsepol.policydb_index_others: security:  1 classes, 0 rules, 0 cond rules
    libsepol.policydb_index_others: security:  0 users, 1 roles, 2 types, 0 bools
    libsepol.policydb_index_others: security: 0 sens, 0 cats
    libsepol.policydb_index_others: security:  1 classes, 0 rules, 0 cond rules
    Binary policy module file loaded.
    Module name: input
    Module version: 1.0.0
    Policy version: 21

    unconditional avtab:
    --- begin avrule block ---
    decl 1:
      allow [httpd_t] [http_port_t] : [tcp_socket] { name_bind };

     [http_port_t] [2]: type flags:0
     [httpd_t] [1]: type flags:0

Signed-off-by: Masatake YAMATO <yamato@redhat.com>
Acked-by: James Carter <jwcart2@gmail.com>
 		2023-06-08 15:09:34 -04:00
..
ru checkpolicy: Minor tweaks to the names of the contributors to the manpages 2020-06-04 16:06:25 -04:00
test dismod: add --actions option for non-interactive use 2023-06-08 15:09:34 -04:00
.gitignore
LICENSE docs: provide a top level LICENSE file 2022-10-05 08:20:38 -04:00
Makefile checkpolicy: drop -pipe compile option 2021-07-13 21:02:04 +02:00
VERSION Update VERSIONs to 3.5 for release. 2023-02-23 05:16:11 -08:00
checkmodule.8 checkpolicy: update documentation 2021-10-04 09:25:12 -04:00
checkmodule.c checkpolicy: misc checkmodule tweaks 2021-09-15 10:13:51 -04:00
checkpolicy.8 checkpolicy: update documentation 2021-10-04 09:25:12 -04:00
checkpolicy.c checkpolicy: rename bool identifiers 2023-05-03 09:15:22 -04:00
checkpolicy.h
module_compiler.c checkpolicy: error out if required permission would exceed limit 2022-06-21 15:20:58 +02:00
module_compiler.h checkpolicy: mark read-only parameters in module compiler const 2021-09-15 10:13:58 -04:00
parse_util.c libsepol: Populate and use policy name 2022-02-24 10:44:46 -05:00
parse_util.h
policy_define.c checkpolicy: only set declared permission bits for wildcards 2023-06-05 15:17:00 -04:00
policy_define.h
policy_parse.y checkpolicy: drop unused token CLONE 2023-06-05 15:16:57 -04:00
policy_scan.l checkpolicy: drop unused token CLONE 2023-06-05 15:16:57 -04:00
queue.c
queue.h