On Saturday 29 May 2010 17:11:14 Tetsuo Handa wrote: > TOMOYO 2.2 is functionally older than TOMOYO 1.7.x . Therefore, some of > the features available in TOMOYO 1.7.x are missing in TOMOYO 2.2 . > Please see http://tomoyo.sourceforge.jp/2.2/tool-editpolicy.html for > TOMOYO 2.2's editpolicy manual. > Thanks for the link. > > For example, editing specific domain's policy ('A' Key) does not seem to > > work with stock kernel and tomoyo-editpolicy. > > That's strange... > I compiled linux-2.6.32.14.tar.bz2 and tomoyo-tools-2.2.0-20100225.tar.gz > and I confirmed that 'A' key (add a new entry) is working well. > This is what I get from the Index list Press one of below keys to switch window. e <<< Exception Policy Editor >>> d <<< Domain Transition Editor >>> p <<< Profile Editor >>> m <<< Manager Policy Editor >>> u <<< Memory Usage >>> q Quit this editor. Notice no "Domain Policy Editor". Maybe I am doing something wrong here. The 'A' key press is still accepted but I get blank window there. <<< Domain Policy Editor >>> 0 entry '?' for help <kernel> > There are several TOMOYO-related packages in Debian's repository. > The up-to-date package for TOMOYO 2.2 is > tomoyo-tools_2.2.0-20100225-1_{i386,amd64}.deb . Please check that you are > using tomoyo-tools_2.2.0-20100225-1_{i386,amd64}.deb . > Yes, I am using those. 23:51:19 rrs at champaran:~/AppArmor-2.5/kernel-patches/for-mainline $ dmesg | grep -i tomo [ 0.000000] Command line: BOOT_IMAGE=/vmlinuz-2.6.34-1-amd64 root=/dev/mapper/LocalDisk-ROOT ro quiet security=tomoyo splash [ 0.000000] Kernel command line: BOOT_IMAGE=/vmlinuz-2.6.34-1-amd64 root=/dev/mapper/LocalDisk-ROOT ro quiet security=tomoyo splash [ 0.004081] TOMOYO Linux initialized [ 4.193246] Calling /sbin/tomoyo-init to load policy. Please wait. [ 4.590814] TOMOYO: 2.2.0 2009/04/01 23:51:27 rrs at champaran:~/AppArmor-2.5/kernel-patches/for-mainline $ apt-cache policy tomoyo-tools tomoyo-tools: Installed: 2.2.0-20100225-1 Candidate: 2.2.0-20100225-1 Version table: *** 2.2.0-20100225-1 0 500 http://ftp.debian.org unstable/main Packages 500 http://mirrors.kernel.org unstable/main Packages 100 /var/lib/dpkg/status Additional Information. 23:53:23 rrs at champaran:/etc/tomoyo $ cat profile.conf 0-COMMENT=-----Disabled Mode----- 0-MAC_FOR_FILE=disabled 0-TOMOYO_VERBOSE=disabled 1-COMMENT=-----Learning Mode----- 1-MAC_FOR_FILE=learning 1-TOMOYO_VERBOSE=disabled 2-COMMENT=-----Permissive Mode----- 2-MAC_FOR_FILE=permissive 2-TOMOYO_VERBOSE=enabled 3-COMMENT=-----Enforcing Mode----- 3-MAC_FOR_FILE=enforcing 3-TOMOYO_VERBOSE=enabled 23:53:28 rrs at champaran:/etc/tomoyo $ cat domain_policy.conf <kernel> use_profile 0 Regards, Ritesh -- Ritesh Raj Sarraf | http://people.debian.org/~rrs -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: This is a digitally signed message part. URL: <https://lists.osdn.me/mailman/archives/tomoyo-users-en/attachments/20100529/08236227/attachment.sig>
TOMOYO
Fork