f10 vs selinux again.
Dominick Grift
domg472 at gmail.com
Sun Mar 1 11:18:26 UTC 2009
On Sat, 2009-02-28 at 19:39 -0500, Gene Heskett wrote:
> On Saturday 28 February 2009, Dominick Grift wrote:
> >On Sat, 2009-02-28 at 18:18 -0500, Gene Heskett wrote:
> >
> >You could try:
> >rpm -Uvh --replacefiles --replacepkgs selinux-policy and
> >selinux-policy-targeted then make sure your base.pp is fresh (try
> >semodule -B)
>
> Ok, did that, no problem with the selinux-policy rpm from the dvd, but when I do the same with selinux-policy-
> targeted, I'm right back to square one:
>
> [root at coyote Packages]# rpm -Uvh --replacefiles --replacepkgs selinux-policy-targeted-3.5.13-18.fc10.noarch.rpm
> Preparing... ########################################### [100%]
> 1:selinux-policy-targeted########################################### [100%]
> libsepol.print_missing_requirements: pki's global requirements were not met: type/attribute pki_kra_port_t
> libsemanage.semanage_link_sandbox: Link packages failed
> semodule: Failed!
>
> A somewhat different error message that might be a bit more enlightening to
> someone who actually knows what it means, but its swahili to me. :)
>
> So, should I nuke the contents of /etc/selinux/* and repeat the rpm commands?
>
> Your turn, Coach. :)
>
You can get the latest packages from koji.fedoraproject.org/koji or your
local fedora mirror.
The error above looks like a bug in policy.
Make sure that if you install the latest selinux policy for f10 from
koji, that you install both: selinux-policy as well as
selinux-policy-targeted.
More information about the fedora-selinux-list
mailing list