|
List Info
Thread: SELinux change from 2005.1 to 2006.1 policy update fails
|
|
| SELinux change from 2005.1 to 2006.1
policy update fails |
 
Germany |
2007-06-17 06:22:09 |
Hi,
I tried upgrading from the 2005.1 to the 2006.1 profile.
Updating
selinux-base-policy-20070329 fails with the following
message:
>>> Setting SELinux security labels
/etc/selinux/targeted/contexts/files/file_contexts: No such
file or directory
!!! ERROR: sec-policy/selinux-base-policy-20070329 failed.
Call stack:
misc-functions.sh, line 570: Called
preinst_selinux_labels
misc-functions.sh, line 492: Called die
!!! Failed to set SELinux security labels.
!!! If you need support, post the topmost build error, and
the call stack if relevant.
Is there some manual stuff I need to do before this upgrade
works?
/etc/make.profile points to
/usr/portage/profiles/selinux/x86/2006.1
Regards,
Konstantin
--
Dipl-Inf. Konstantin Agouros aka Elwood Blues. Internet:
elwood agouros.de
Otkerstr. 28, 81547 Muenchen, Germany. Tel +49 89 69370185
------------------------------------------------------------
----------------
"Captain, this ship will not survive the forming of the
cosmos." B'Elana Torres
--
gentoo-usergentoo.org mailing list
|
|
| Re: SELinux change from 2005.1 to
2006.1 policy update fails |
 
United Kingdom |
2007-06-18 02:38:02 |
ON SUNDAY 17 JUNE 2007 12:22, KONSTANTINOS AGOUROS WROTE:
> HI,
>
> I TRIED UPGRADING FROM THE 2005.1 TO THE 2006.1
PROFILE. UPDATING
>
> SELINUX-BASE-POLICY-20070329 FAILS WITH THE FOLLOWING
MESSAGE:
> >>> SETTING SELINUX SECURITY LABELS
>
> /ETC/SELINUX/TARGETED/CONTEXTS/FILES/FILE_CONTEXTS: NO
SUCH FILE OR
> DIRECTORY
WHAT IS LISTED UNDER /ETC/SELINUX/TARGETED/CONTEXTS/FILES/
?
IF THE FILE IS THERE THEN CAN YOU CHECK THAT YOU ARE NOT
EMERGING THIS WHILE
USING FEATURES="USERPRIV" IN YOUR MAKE.CONF.
IF THE ABOVE DOES NOT HELP, YOU COULD ASK FOR MORE INFORMED
ADVICE IN THE IRC
CHANNEL FOR GENTOO KERNEL DEVS.
--
REGARDS,
MICK
|
|
| Re: SELinux change from 2005.1 to
2006.1 policy update fails |
Germany |
2007-06-18 14:38:37 |
In <200706180838.05681.michaelkintziosgmail.com> michaelkintziosgmail.com (Mick) writes:
>--nextPart13142306.RAMmR4N7DJ
>Content-Type: text/plain;
> charset="utf-8"
>Content-Transfer-Encoding: quoted-printable
>Content-Disposition: inline
>On Sunday 17 June 2007 12:22, Konstantinos Agouros
wrote:
>> Hi,
>>
>> I tried upgrading from the 2005.1 to the 2006.1
profile. Updating
>>
>> selinux-base-policy-20070329 fails with the
following message:
>> >>> Setting SELinux security labels
>>
>> /etc/selinux/targeted/contexts/files/file_contexts:
No such file or
>> directory
>What is listed under
/etc/selinux/targeted/contexts/files/ ?
/etc/selinux is empty.
When I started with hardened sources this was all put to
/etc/security/selinux
so it seems I need some kind of migration script or is a
simple
softlink good enough?
Regards,
Konstantin
>If the file is there then can you check that you are not
emerging this whil=
>e=20
>using FEATURES=3D"userpriv" in your
make.conf.
>If the above does not help, you could ask for more
informed advice in the i=
>rc=20
>channel for gentoo kernel devs.
>=2D-=20
>Regards,
>Mick
>--nextPart13142306.RAMmR4N7DJ
>Content-Type: application/pgp-signature
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.7 (GNU/Linux)
>iD8DBQBGdjZd5Fp0QerLYPcRAnnUAJ9StOt71YoZczDDSVTn/2Pa9aio
AQCgza7X
>QK+IF6Ew9FbqHMSjO2oEO8c=
>=nQVs
>-----END PGP SIGNATURE-----
>--nextPart13142306.RAMmR4N7DJ--
>--
>gentoo-usergentoo.org mailing list
--
Dipl-Inf. Konstantin Agouros aka Elwood Blues. Internet:
elwoodagouros.de
Otkerstr. 28, 81547 Muenchen, Germany. Tel +49 89 69370185
------------------------------------------------------------
----------------
"Captain, this ship will not survive the forming of the
cosmos." B'Elana Torres
--
gentoo-usergentoo.org mailing list
|
|
| Re: SELinux change from 2005.1 to
2006.1 policy update fails |
United Kingdom |
2007-06-19 12:45:37 |
ON MONDAY 18 JUNE 2007 20:38, KONSTANTINOS AGOUROS WROTE:
> IN <200706180838.05681.MICHAELKINTZIOSGMAIL.COM> MICHAELKINTZIOSGMAIL.COM
(MICK) WRITES:
> >ON SUNDAY 17 JUNE 2007 12:22, KONSTANTINOS AGOUROS
WROTE:
> >> HI,
> >>
> >> I TRIED UPGRADING FROM THE 2005.1 TO THE
2006.1 PROFILE. UPDATING
> >>
> >> SELINUX-BASE-POLICY-20070329 FAILS WITH THE
FOLLOWING MESSAGE:
> >> >>> SETTING SELINUX SECURITY LABELS
> >>
/ETC/SELINUX/TARGETED/CONTEXTS/FILES/FILE_CONTEXTS: NO SUCH
FILE OR
> >> DIRECTORY
> >
> >WHAT IS LISTED UNDER
/ETC/SELINUX/TARGETED/CONTEXTS/FILES/ ?
>
> /ETC/SELINUX IS EMPTY.
>
> WHEN I STARTED WITH HARDENED SOURCES THIS WAS ALL PUT
TO
> /ETC/SECURITY/SELINUX SO IT SEEMS I NEED SOME KIND OF
MIGRATION SCRIPT OR
> IS A SIMPLE
> SOFTLINK GOOD ENOUGH?
SORRY KONSTANTIN, LAST TIME I USED SELINUX FOR A VERY SHORT
TIME WAS MORE THAN
THREE YEARS AGO . . . I'VE FORGOTTEN MOST OF IT SINCE THEN
AND THINGS MOST
LIKELY HAVE MOVED ON. PERHAPS SOMEONE MORE VERSED IN
SELINUX COULD HELP
HERE?
>
> >IF THE FILE IS THERE THEN CAN YOU CHECK THAT YOU
ARE NOT EMERGING THIS
> > WHIL= E=20
> >USING FEATURES=3D"USERPRIV" IN YOUR
MAKE.CONF.
AARGH! WHY WAS MY PREVIOUS MESSAGE RECEIVED LIKE SO
"WHIL= E=20"? WHAT EMAIL
CLIENT ARE YOU USING?
--
REGARDS,
MICK
|
|
| Re: SELinux change from 2005.1 to
2006.1 policy update fails |
Germany |
2007-06-20 11:03:13 |
In <200706191845.39612.michaelkintziosgmail.com> michaelkintziosgmail.com (Mick) writes:
>--nextPart1695717.Xy3eqH9OGj
>Content-Type: text/plain;
> charset="utf-8"
>Content-Transfer-Encoding: quoted-printable
>Content-Disposition: inline
>On Monday 18 June 2007 20:38, Konstantinos Agouros
wrote:
>> In <200706180838.05681.michaelkintziosgmail.com> michaelkintziosgmail.c=
>om=20
>(Mick) writes:
>> >On Sunday 17 June 2007 12:22, Konstantinos
Agouros wrote:
>> >> Hi,
>> >>
>> >> I tried upgrading from the 2005.1 to the
2006.1 profile. Updating
>> >>
>> >> selinux-base-policy-20070329 fails with
the following message:
>> >> >>> Setting SELinux security
labels
>> >>
/etc/selinux/targeted/contexts/files/file_contexts: No such
file or
>> >> directory
>> >
>> >What is listed under
/etc/selinux/targeted/contexts/files/ ?
>>
>> /etc/selinux is empty.
>>
>> When I started with hardened sources this was all
put to
>> /etc/security/selinux so it seems I need some kind
of migration script or
>> is a simple
>> softlink good enough?
>Sorry Konstantin, last time I used SELinux for a very
short time was more t=
>han=20
>three years ago . . . I've forgotten most of it since
then and things most=
>=20
>likely have moved on. Perhaps someone more versed in
SELinux could help=20
>here?
>>
>> >If the file is there then can you check that
you are not emerging this
>> > whil=3D e=3D20
>> >using FEATURES=3D3D"userpriv" in your
make.conf.
>Aargh! Why was my previous message received like so
"whil=3D e=3D20"? What=
> email=20
>client are you using?
I have the mailinglist transferred to a local news server
and use good old
nn as newsreader, which does not seem to cope well with
utf-8 as transfer
encoding 
Cheers,
Konstantin
>=2D-=20
>Regards,
>Mick
>--nextPart1695717.Xy3eqH9OGj
>Content-Type: application/pgp-signature
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.7 (GNU/Linux)
>iD8DBQBGeBZD5Fp0QerLYPcRAqFfAJ9YDDvz8jCwv1m7ZyjlQKC0mg37
MwCeIGEl
>nCbzxef2UoZKpXXTj15z+Xo=
>=tjIP
>-----END PGP SIGNATURE-----
>--nextPart1695717.Xy3eqH9OGj--
>--
>gentoo-usergentoo.org mailing list
--
Dipl-Inf. Konstantin Agouros aka Elwood Blues. Internet:
elwoodagouros.de
Otkerstr. 28, 81547 Muenchen, Germany. Tel +49 89 69370185
------------------------------------------------------------
----------------
"Captain, this ship will not survive the forming of the
cosmos." B'Elana Torres
--
gentoo-usergentoo.org mailing list
|
|
[1-5]
|
|
|
about | contact Other archives ( Real Estate discussion Medical topics )
|