On 04/08/2014 03:33 PM, Nick Kralevich wrote: > > Are there any tools available to take a compiled SELinux policy (in > /sepolicy) and decompile it so that it's human readable?
Not exactly. You can use the SELinux policy tools to introspect a binary policy file: yum install "setools*" or apt-get install setools and then use seinfo, sesearch, apol, etc. There is also a "dispol" program under checkpolicy/test that can be used to dump specific info from a binary policy file, but it isn't a complete dump of everything.
