Bug in selinux-policy-strict.noarch 0:2.6.4-13.fc7

Daniel J Walsh dwalsh at redhat.com
Mon Jun 11 17:48:33 UTC 2007


David-Alexandre Davidson wrote:
> I have the exact same problem.
>
> I didn't notice at first because it was installed within a script and 
> yum report a success.
> But When I rebooted with in a  permissive state I have bunch of audit, 
> and
> /etc/selinux/strict/modules/active/modules  is empty.
> semodule --list   returns an empty list also.
>
>
>
>> I was not able to install selinux-policy-strict.noarch 0:2.6.4-13.fc7 :
>>
>> Here is the trace.
>>
>> Thanks,
>>
>>
>> _______________________________________________________
>>
>> yum install selinux-policy-strict
>> Loading "installonlyn" plugin
>> Setting up Install Process
>> Parsing package install arguments
>> livna                     100% |=========================| 1.1 kB    
>> 00:00
>> fedora                    100% |=========================| 2.1 kB    
>> 00:00
>> updates                   100% |=========================| 1.9 kB    
>> 00:00
>> Resolving Dependencies
>> --> Running transaction check
>> ---> Package selinux-policy-strict.noarch 0:2.6.4-13.fc7 set to be 
>> updated
>>
>> Dependencies Resolved
>>
>> ============================================================================= 
>>
>> Package                 Arch       Version          Repository        
>> Size
>> ============================================================================= 
>>
>> Installing:
>> selinux-policy-strict   noarch     2.6.4-13.fc7     updates           
>> 1.6 M
>>
>> Transaction Summary
>> ============================================================================= 
>>
>> Install      1 Package(s)
>> Update       0 Package(s)
>> Remove       0 Package(s)
>>
>> Total download size: 1.6 M
>> Is this ok [y/N]: y
>> Downloading Packages:
>> (1/1): selinux-policy-str 100% |=========================| 1.6 MB    
>> 00:26
>> Running Transaction Test
>> Finished Transaction Test
>> Transaction Test Succeeded
>> Running Transaction
>>  Installing: selinux-policy-strict        ######################### 
>> [1/1]
>> libsepol.context_from_record: type unconfined_execmem_exec_t is not 
>> defined
>> libsepol.context_from_record: could not create context structure
>> libsepol.context_from_string: could not create context structure
>> libsepol.sepol_context_to_sid: could not convert 
>> system_u:object_r:unconfined_execmem_exec_t:s0 to sid
>> /etc/selinux/strict/contexts/files/file_contexts:  line 597 has 
>> invalid context system_u:object_r:unconfined_execmem_exec_t:s0
>> libsemanage.semanage_install_active: setfiles returned error code 1.
>> semodule:  Failed!
>>
>> Installed: selinux-policy-strict.noarch 0:2.6.4-13.fc7
>> Complete!
>>
>>
>> -- 
>> fedora-selinux-list mailing list
>> fedora-selinux-list at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
>>
>
> -- 
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
This will be fixed in 2.6.4-14




More information about the fedora-selinux-list mailing list