Luke Kenneth Casson Leighton wrote:
On Tue, Jun 21, 2005 at 11:46:30PM -0400, Joshua Brindle wrote:The doctool to generate module.conf, tunables.conf and the html docs for the reference policy is in python :)Wish List item 3) that the tools that do the converting to/from XML be written in python!!!wheeeee :)
glad you approve :)
This isn't right. The XML part of this equation is just the route those authors chose to get a free parser, the tool would work exactly the same from the user prespective if the file format was binary using alternating happy faces and frowny faces. It's just the tool and the developers that have to deal with the backend storage format. It might be nice in the firewall case to transform the config file into html but I can't think of a way this is helpful for SELinux policy.I'm not sure what this means. How does XML help people that don't understand selinux do anything?XML is the sort of thing that allows people with very little understanding of e.g. selinux to write, write, using simple libraries, their Own Glorious parsing analysis and communication tools.to illustrate: i did not need to understand anything about the ordering of the application of incoming NAT and incoming firewall rules which are different from the ordering of the application of outgoing NAT and outgoing firewall rules in order to write my fw_builder.py program, which simply takes the output of fwbuilder (an XML file) and spews forth a prettified HTML version of the firewall policy. more later.
The bottom line is that the tools would be great but the XML has nothing to do with that.
Joshua -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.