From: Laurent Bigonville <[email protected]>
This fixes the compilation of policy generated by mdp with the recent
version of checkpolicy.
Signed-off-by: Laurent Bigonville <[email protected]>
---
scripts/selinux/mdp/mdp.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/scripts/selinux/mdp/mdp.c b/scripts/selinux/mdp/mdp.c
index 62b34ce..e10beb1 100644
--- a/scripts/selinux/mdp/mdp.c
+++ b/scripts/selinux/mdp/mdp.c
@@ -98,6 +98,7 @@ int main(int argc, char *argv[])
/* types, roles, and allows */
fprintf(fout, "type base_t;\n");
+ fprintf(fout, "role base_r;\n");
fprintf(fout, "role base_r types { base_t };\n");
for (i = 0; secclass_map[i].name; i++)
fprintf(fout, "allow base_t base_t:%s *;\n",
--
2.1.4
On Tue, Jul 7, 2015 at 5:10 PM, Laurent Bigonville <[email protected]> wrote:
> From: Laurent Bigonville <[email protected]>
>
> This fixes the compilation of policy generated by mdp with the recent
> version of checkpolicy.
>
> Signed-off-by: Laurent Bigonville <[email protected]>
> ---
> scripts/selinux/mdp/mdp.c | 1 +
> 1 file changed, 1 insertion(+)
Merged into selinux#next, thank you.
> diff --git a/scripts/selinux/mdp/mdp.c b/scripts/selinux/mdp/mdp.c
> index 62b34ce..e10beb1 100644
> --- a/scripts/selinux/mdp/mdp.c
> +++ b/scripts/selinux/mdp/mdp.c
> @@ -98,6 +98,7 @@ int main(int argc, char *argv[])
>
> /* types, roles, and allows */
> fprintf(fout, "type base_t;\n");
> + fprintf(fout, "role base_r;\n");
> fprintf(fout, "role base_r types { base_t };\n");
> for (i = 0; secclass_map[i].name; i++)
> fprintf(fout, "allow base_t base_t:%s *;\n",
> --
> 2.1.4
--
paul moore
http://www.paul-moore.com