libselinux is the SELinux runtime shared libraries.
libselinux is the SELinux runtime shared libraries.
Questions tagged [libselinux]
26 questions
1
vote
0 answers
error: libaudit.h: No such file or directory
I am building libselinux on openwrt, and need auditing support.
But I have really open the aduditing support in the linux kernel menuconfig, why still this error happen?
error: libaudit.h: No such file or directory.
Any sort of help is greatly…
roMoon
- 91
- 10
1
vote
1 answer
Type alias in SELinux
I am using fedora 22. I have used a predifined type lets say a_t in .fc file. When I load the policy
and run restorecon -v . I get the following
restorecon reset context b_t -> a_t
where b_t is the default context of .
but when I run ls -Z over…
user634615
- 647
- 7
- 17
1
vote
1 answer
Unable to change filesystem label using selinux policy module
I am using fedora 21
I have written a selinux policy moudle for an application. I have defined new types is .te file and created a .fc file in which defines the labelling of files with the types I have created. i can successfully load the policy…
user634615
- 647
- 7
- 17
1
vote
1 answer
Can't compile Debian RefPolicy for SELinux
I am using Debian 6 with SELinux enabled.
Now, I just want to change default policy and make my-policy as a active policy. For that I have downloaded debian's refpolicy and tried to compile it.
It seems rolemap file is not found. But rolemap is…
Perumal Subramanian
- 21
- 3
1
vote
1 answer
How to build a 32-bit compat libselinux on (and for use on) an x86-64 Centos system
I need a 32-bit compat libselinux.so.1 on my x86-64 Centos system to run some non-open source software from Xilinx. I tried installing with yum:
$ sudo yum install libselinux-devel.i686
However, I found that the package is apparently broken as the…
aneccodeal
- 8,531
- 7
- 45
- 74
0
votes
1 answer
selinux audit log flooded with avc denials to /tmp tmpfs when user is set to user_r
I want to learn to create a role based on user_r for my custom motion daemon. The daemon works fine as unconstrained, but I want to lock it down further. I am on fedora 38 coreos.
Selinux tutorials and docs are a bit thin on the ground, but I have…
miller the gorilla
- 860
- 1
- 7
- 19
0
votes
1 answer
What is the format of an selinux context (security_context_t)?
The getfilecon() API call is declared to return a security_context_t as follows:
int getfilecon(const char *path, security_context_t *con);
What is the formal definition of a security_context_t?
Anecdotally a security_context_t appears to be a…
Graham Leggett
- 911
- 7
- 20
0
votes
1 answer
SELinux - how do I call my custom interface?
I wrote a new policy contains new type definition (.te) and interface method (.if):
.te file:
policy_module(dummy, 1.0.0)
type dummy_t;
files_type(dummy_t)
.if file:
##
## Do Bla bla
##
##
## …
0
votes
1 answer
Compile selinux in private directory
I'm trying to compile selinux in a private directory as drescribed here:
https://github.com/SELinuxProject/selinux
For the compilation to work I also compiled xmlto and added it's bin-dir to $PATH.
The compilation fails with the following…
Markus
- 111
- 1
- 1
- 4
0
votes
1 answer
Why is execve call failing with enabled SELinux?
I'm on a Linux System and recently enabled SELinux in permissive and enforcing mode.
While executing the login command in a shell with correct username and password I get a "Permission denied" error message on execve() system call.
Debugging all…
Chris
- 1
- 5
-2
votes
1 answer
C - libselinux - check if selinux is enforcing or permissive
I couldnt find the answer to this question before reading: getenforce source code. I just wanted to get the mode of selinux so I would know in runtime if selinux is enforcing and spamming avc denials because gdb is reading: gdb avc denial bug. I…
Ömer Gök
- 19
- 5