I used apol 3.3.6 and when I load my sepolicy.conf, it crashes with messages
external/sepolicy/genfs_contexts":9:ERROR 'invalid type trigger' at token 'genfscon' on line 11611: genfscon selinuxfs / u:object_r:selinuxfs:s0 # selinuxfs booleans can be individually labeled. [1]+ Segmentation fault apol Tai On 4/8/14, 3:41 PM, "Stephen Smalley" <[email protected]> wrote: >On 04/08/2014 03:33 PM, Nick Kralevich wrote: >> >> Are there any tools available to take a compiled SELinux policy (in >> /sepolicy) and decompile it so that it's human readable? > >Not exactly. You can use the SELinux policy tools to introspect a >binary policy file: yum install "setools*" or apt-get install setools >and then use seinfo, sesearch, apol, etc. There is also a "dispol" >program under checkpolicy/test that can be used to dump specific info >from a binary policy file, but it isn't a complete dump of everything. > >
