Where can I find a list of all the macros in Selinux? I can't find them installed on fedora or anywhere else online.

When I say Macros I mean rules like: domain_auto_trans

$ rpm -qf /usr/share/selinux/devel/include/support/misc_patterns.spt


all macros, patterns, interfaces, templates, permission sets are in /usr/share/selinux/devel/include

Thanks a lot man, I can't believe I didn't look there. In your opinion do you think it is better to start with interfaces and macros or write raw selinux policy if you are just starting out?

The (raw) SELinux policy language, as the Reference policy layer is just abstraction layer on top of it.

Learning how Reference policy groups, and organizes SELinux policy is easier than learning SELinux policy language.

Also you can get by with just learning SELinux policy language, whereas you cannot by just learning Reference policy (because reference policy is a optional layer on top of the SELinux policy language, it expands to SELinux policy language)

Starting at square zero is probably the shortest route to the finish in the long run.

Writing policy is talking to the SELinux security server, SELinux policy language is the language of the SELinux security server. Reference policy can be considered a translation of that language i suppose. Some languages are hard to translate because they are so "rich". If your security depends on it you probably want to be able to speak the native language to ...(more)

