Hi, While using setools out of out tree we noticed that setools/policygrep does not support parsing ioctl-related filtering.
For example: /extra/eresheto/gmin-m/external/sepolicy/untrusted_app.te":105:ERROR 'syntax error' at token '0x8900' on line 12830: 0x8900-0x8926 0x8928-0x89ff #line 105 Traceback (most recent call last): File "selint", line 125, in <module> policy = policysource.policy.SourcePolicy(ALL_POLICY_FILES) File "/extra/eresheto/selint/selint/policysource/policy.py", line 75, in __init__ self._policy = setools.policyrep.SELinuxPolicy(self._policyconf) File "/extra/eresheto/gmin-m/prebuilts/python/linux-x86/2.7.5/lib/python2.7/site-packages/setools/policyrep/__init__.py", line 86, in __init__ self._load_policy(policyfile) File "/extra/eresheto/gmin-m/prebuilts/python/linux-x86/2.7.5/lib/python2.7/site-packages/setools/policyrep/__init__.py", line 119, in _load_policy format(filename, err)) setools.policyrep.exception.InvalidPolicy: Error opening policy file "/tmp/tmpdMw6Ow/policy.conf": Invalid policy. What is the plan to update the "in-tree" setools? Otherwise it is kind of annoying because even AOSP policy has ioctl-related things, but policygrep fails on it. Best Regards, Elena.
_______________________________________________ Seandroid-list mailing list [email protected] To unsubscribe, send email to [email protected]. To get help, send an email containing "help" to [email protected].
