libsepol: improve policy lookup failure message

If a policy version cannot be found include the policy target, and a module prefix for non kernel policies in the message. Signed-off-by: Christian Göttsche <[email protected]> Acked-by: James Carter <[email protected]>
SELinuxProject · May 1, 2024 · fa3a1bc · fa3a1bc
1 parent e81a05a
commit fa3a1bc
Showing 1 changed file with 4 additions and 2 deletions.
diff --git a/libsepol/src/write.c b/libsepol/src/write.c
@@ -2252,8 +2252,10 @@ int policydb_write(policydb_t * p, struct policy_file *fp)
  info = policydb_lookup_compat(p->policyvers, p->policy_type,
  p->target_platform);
  if (!info) {
- ERR(fp->handle, "compatibility lookup failed for policy "
- "version %d", p->policyvers);
+ ERR(fp->handle, "compatibility lookup failed for %s%s policy version %d",
+ p->target_platform == SEPOL_TARGET_SELINUX ? "selinux" : "xen",
+ p->policy_type == POLICY_KERN ? "" : " module",
+ p->policyvers);
  return POLICYDB_ERROR;
  }