Hello,

I try to rewrite RHEL4 SELinux jboss rule to RHEL5. I have troubles with porting jboss.te file to RHEL5 because RHEL5 is missing basic attributes like: var_lib_t, sysadmfile, initrc_t, sysadm_t, fonts_t, proc_t and other basic types. Can you tell me how to replace these missing types or what to install if I miss something?

In RHEL4 these missing types are defined in files stored in /etc/selinux/targeted/src/policy/domains/program.
On RHEL5 there is no such files and these types are not defined at all.
I tried to copy these files from RHEL4 to RHEL5 but make on RHEL5 does not see them and still returns errors like this one:

Compiling targeted jboss module
/usr/bin/checkmodule: loading policy configuration from tmp/jboss.tmp
jboss.te:113:ERROR 'unknown type var_lib_t' at token ';' on line 92422:
allow jboss_t var_lib_t:dir search;
#allow jboss_t fonts_t:file r_file_perms;
/usr/bin/checkmodule: error(s) encountered while parsing configuration
make: *** [tmp/jboss.mod] Error 1

please help,
zbiggy

Contexts should be somewhere in /etc/selinux/targeted/.* as .*context(s?). Attaching your semodule plaintext sources could help.

Given that RH own RHEL & JBOSS, a fresh install of both should produce a working system. SELinux was amended considerably between the 2 versions. I wouldn't bother trying to port the old SELinux rules.
In fact, I saw somewhere in the docs that they don't support upgrades across major RHEL versions eg RHEL 4 -> 5 and this is probably one of the reasons why; too much has changed to reliably produce a reliable system.