2.6.24-rc8-mm1 and SELinux MLS - not playing nice....
Valdis.Kletnieks at vt.edu
Valdis.Kletnieks at vt.edu
Fri Jan 18 07:51:01 UTC 2008
Posting to both lists because I'm not sure who's at fault here....
System is a Dell Latitude D820, x86_64 kernel, userspace is basically
Fedora Rawhide as of earlier today, in particular selinux-policy-mls-3.2.5-12.fc9
Trying to boot a 2.6.24-rc8-mm1 kernel gets me these msgs:
security: 5 users, 8 roles, 2043 types, 102 bools, 16 sens, 1024 cats
security: 67 classes, 164754 rules
security: class peer not defined in policy
security: permission recvfrom in class node not defined in policy
security: permission sendto in class node not defined in policy
security: permission ingress in class netif not defined in policy
security: permission egress in class netif not defined in policy
security: permission forward_in in class packet not found in policy, bad policy
security: the definition of a class is incorrect
2.6.24-rc6-mm1 said this instead:
security: class peer not defined in policy
security: permission recvfrom in class node not defined in policy
security: permission sendto in class node not defined in policy
security: permission ingress in class netif not defined in policy
security: permission egress in class netif not defined in policy
SELinux: policy loaded with handle_unknown=deny
and then proceeded to work OK.
(I suspect this may be the same thing Andrew Morton hit, but I can't be sure).
Anybody got hints on how to move forward? Or is a fixed policy already in the
Rawhide pipe?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-selinux-list/attachments/20080118/37db5f3a/attachment.sig>
More information about the fedora-selinux-list
mailing list