| Message ID | 20230604115726.11247-1-toiwoton@gmail.com (mailing list archive) |
|---|---|
| State | Accepted |
| Commit | 6360af7a98cc |
| Delegated to: | Petr Lautrbach |
| Headers | show |
| Series | sepolicy: clarify manual page of sepolicy interface | expand |
Topi Miettinen <toiwoton@gmail.com> writes: > Expand the description to make it more clear what "interfaces" mean > here. They're different from network interfaces used by SELinux > command `semanage interface`. > > Add a note that the information comes from on-disk file which has been > installed and it doesn't necessarily match the policy loaded to the > kernel. > > Signed-off-by: Topi Miettinen <toiwoton@gmail.com> Acked-by: Petr Lautrbach <lautrbach@redhat.com> Thanks! > --- > python/sepolicy/sepolicy-interface.8 | 6 +++++- > 1 file changed, 5 insertions(+), 1 deletion(-) > > diff --git a/python/sepolicy/sepolicy-interface.8 b/python/sepolicy/sepolicy-interface.8 > index 3e74ea62..c8985afb 100644 > --- a/python/sepolicy/sepolicy-interface.8 > +++ b/python/sepolicy/sepolicy-interface.8 > @@ -8,7 +8,11 @@ sepolicy-interface \- Print interface information based on the installed SELinux > .B sepolicy interface [\-h] [\-c] [\-v] [\-a | \-u | \-l | \-i INTERFACE [INTERFACE ... ]] > > .SH "DESCRIPTION" > -Use sepolicy interface to print interfaces information based on SELinux Policy. > +Use sepolicy interface to print information of interface macros > +between domains in SELinux policy modules, as used in Reference > +Policy. The information is based on installed on-disk representation > +of the SELinux Policy and it may be different from the policy which is > +currently loaded. > > .SH "OPTIONS" > .TP > -- > 2.39.2
On Mon, Jun 5, 2023 at 5:17 AM Petr Lautrbach <lautrbach@redhat.com> wrote: > > Topi Miettinen <toiwoton@gmail.com> writes: > > > Expand the description to make it more clear what "interfaces" mean > > here. They're different from network interfaces used by SELinux > > command `semanage interface`. > > > > Add a note that the information comes from on-disk file which has been > > installed and it doesn't necessarily match the policy loaded to the > > kernel. > > > > Signed-off-by: Topi Miettinen <toiwoton@gmail.com> > > Acked-by: Petr Lautrbach <lautrbach@redhat.com> > Merged. Thanks, Jim > Thanks! > > > --- > > python/sepolicy/sepolicy-interface.8 | 6 +++++- > > 1 file changed, 5 insertions(+), 1 deletion(-) > > > > diff --git a/python/sepolicy/sepolicy-interface.8 b/python/sepolicy/sepolicy-interface.8 > > index 3e74ea62..c8985afb 100644 > > --- a/python/sepolicy/sepolicy-interface.8 > > +++ b/python/sepolicy/sepolicy-interface.8 > > @@ -8,7 +8,11 @@ sepolicy-interface \- Print interface information based on the installed SELinux > > .B sepolicy interface [\-h] [\-c] [\-v] [\-a | \-u | \-l | \-i INTERFACE [INTERFACE ... ]] > > > > .SH "DESCRIPTION" > > -Use sepolicy interface to print interfaces information based on SELinux Policy. > > +Use sepolicy interface to print information of interface macros > > +between domains in SELinux policy modules, as used in Reference > > +Policy. The information is based on installed on-disk representation > > +of the SELinux Policy and it may be different from the policy which is > > +currently loaded. > > > > .SH "OPTIONS" > > .TP > > -- > > 2.39.2 >
diff --git a/python/sepolicy/sepolicy-interface.8 b/python/sepolicy/sepolicy-interface.8 index 3e74ea62..c8985afb 100644 --- a/python/sepolicy/sepolicy-interface.8 +++ b/python/sepolicy/sepolicy-interface.8 @@ -8,7 +8,11 @@ sepolicy-interface \- Print interface information based on the installed SELinux .B sepolicy interface [\-h] [\-c] [\-v] [\-a | \-u | \-l | \-i INTERFACE [INTERFACE ... ]] .SH "DESCRIPTION" -Use sepolicy interface to print interfaces information based on SELinux Policy. +Use sepolicy interface to print information of interface macros +between domains in SELinux policy modules, as used in Reference +Policy. The information is based on installed on-disk representation +of the SELinux Policy and it may be different from the policy which is +currently loaded. .SH "OPTIONS" .TP
Expand the description to make it more clear what "interfaces" mean here. They're different from network interfaces used by SELinux command `semanage interface`. Add a note that the information comes from on-disk file which has been installed and it doesn't necessarily match the policy loaded to the kernel. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> --- python/sepolicy/sepolicy-interface.8 | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-)