Re: SELinux on Debian (Sid), second try

[Magnus Therning <magnus-work@therning.org>]

[-- Attachment #1: Type: text/plain, Size: 2727 bytes --]

On Tue, Jun 29, 2004 at 10:59:28AM +0200, Magnus Therning wrote:
>On Tue, Jun 29, 2004 at 03:33:09PM +1000, Russell Coker wrote:
>>On Tue, 29 Jun 2004 01:04, Magnus Therning <magnus-work@therning.org> wrote:
>>> >/etc/selinux is supposed to be a sym-link
>>> >to /usr/share/selinux/policy/current/ .
>>> >
>>> >Does /usr/share/selinux/policy/current/ exist?
>>>
>>> Nope, it doesn't. All I have is /usr/share/selinux/policy/default/
>>
>>Change line 12 of /etc/dpkg/postinst.d/selinux to be the following and
>>things should work.  I'll upload a new version of
>>selinux-policy-default to fix this shortly.
>>if grep -q selinuxfs /proc/mounts && test -e /etc/selinux ; then
>
>That got me a bit further. I get asked a slew of questions about domains
>:-) After answering them to the best of my ability (this is to be a test
>setup only, so I answer yes to a lot of stuff) I get stuck at the
>following:
>
>Installing the new SE Linux policy
>mount: none already mounted or /selinux busy
>dpkg: error processing selinux-policy-default (--configure):
> subprocess post-installation script returned error exit status 32
>Errors were encountered while processing:
> selinux-policy-default
>E: Sub-process /usr/bin/dpkg returned error code (1)

Some more information (that might be interesting).

/etc/fstab has an entry like this:

 none /selinux selinuxfs noauto 0 0

'mount' doesn't report it mounted though. Should it?

Calling 'mount /selinux' results in

 mount: none already mounted or /selinux busy

'ls /selinux' reveals that it already is populated with the following:

total 0
-rw-rw-rw-    1 root     root            0 Jun 28 13:35 access
dr-xr-xr-x    1 root     root            0 Jun 28 13:35 booleans
--w-------    1 root     root            0 Jun 28 13:35 commit_pending_bools
-rw-rw-rw-    1 root     root            0 Jun 28 13:35 context
-rw-rw-rw-    1 root     root            0 Jun 28 13:35 create
--w-------    1 root     root            0 Jun 28 13:35 disable
-rw-r--r--    1 root     root            0 Jun 28 13:35 enforce
-rw-------    1 root     root            0 Jun 28 13:35 load
-r--r--r--    1 root     root            0 Jun 28 13:35 mls
-r--r--r--    1 root     root            0 Jun 28 13:35 policyvers
-rw-rw-rw-    1 root     root            0 Jun 28 13:35 relabel
-rw-rw-rw-    1 root     root            0 Jun 28 13:35 user

/M

-- 
-----------------------------------------------------------------------
Magnus Therning                 Philips Research Laboratories Eindhoven
Phone: +31 40 2745179           (OpenPGP: 0x4FBB2C40)

Advice is what we ask for when we already know the answer but wish we
didn't.
     -- Erica Jong

[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]