apol(1) - c7

1apol(1)                     General Commands Manual                    apol(1)
2
3
4

NAME

6       apol - SELinux policy analysis tool
7

SYNOPSIS

9       apol [OPTIONS] [POLICY ...]
10

DESCRIPTION

12       apol  is  a graphical tool that allows the user to inspect aspects of a
13       SELinux policy.  The tool allows the user to browse  policy  components
14       (types,  classes,  roles, users, etc.), rules (TE, RBAC, MLS), and file
15       system contexts.  The tool also provides in depth  analyses  of  domain
16       transitions, information flows, and relabeling permissions.
17

POLICY

19       apol supports loading a SELinux policy in one of four formats.
20
21       source A  single  text  file  containing  policy source for versions 12
22              through 21. This file is usually named policy.conf.
23
24       binary A single file containing a monolithic kernel binary  policy  for
25              versions  15 through 21. This file is usually named by version -
26              for example, policy.20.
27
28       modular
29              A list of policy packages each containing a loadable policy mod‐
30              ule. The first module listed must be a base module.
31
32       policy list
33              A single text file containing all the information needed to load
34              a policy, usually exported by SETools graphical utilities.
35
36       If a policy is not given on the command line then apol will begin  with
37       none loaded.
38

OPTIONS

40       -h, --help
41              Print help information and exit.
42
43       -V, --version
44              Print version information and exit.
45

AUTHOR

47       This manual page was written by Jeremy A. Mowery <jmowery@tresys.com>.
48

COPYRIGHT

50       Copyright(C) 2001-2007 Tresys Technology, LLC
51

BUGS

53       Please report bugs via an email to setools-bugs@tresys.com.
54