From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <46FA661F.1080703@redhat.com> Date: Wed, 26 Sep 2007 10:01:03 -0400 From: Daniel J Walsh MIME-Version: 1.0 To: Stephen Smalley , SE Linux Subject: Re: I am concerned about putting genhomedircon changes in libsemanage into Fedora 8. References: <46CED283.8060804@redhat.com> In-Reply-To: <46CED283.8060804@redhat.com> Content-Type: text/plain; charset=ISO-8859-1 Sender: owner-selinux@tycho.nsa.gov List-Id: selinux@tycho.nsa.gov -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Daniel J Walsh wrote: > I may hold off on this so we can get a full Rawhide cycle on it. > genhomedircon has many corner cases and do not want to risk blowing F-8 > now that we are at Feature Freeze. > All the rest of the patches have been integrated. - -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. The genhomedircon replacement is broken in libsemanage. It is generating invalid file context. The python version verified the file context it was creating were valid before assiging them. This is resulting in Fedora Core 8 not being able to autorelabel /sbin/fixfiles restore /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 26 has invalid context user_u:object_r:user_gconf_home_t:s0 /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 51 has invalid context user_u:object_r:user_gconf_tmp_t:s0 /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 60 has invalid context mytuser_u:object_r:mytuser_gnome_home_t:s0 /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 63 has invalid context mytuser_u:object_r:httpd_mytuser_content_t:s0 /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 64 has invalid context mytuser_u:object_r:mytuser_home_ssh_t:s0 /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 65 has invalid context mytuser_u:object_r:mytuser_uml_rw_t:s0 /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 66 has invalid context mytuser_u:object_r:mytuser_mozilla_home_t:s0 /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 67 has invalid context mytuser_u:object_r:mytuser_xauth_home_t:s0 /etc/selinux/targeted/contexts/files/file_contexts.homedirs: line 68 has invalid context mytuser_u:object_r:mytuser_fonts_t:s0 Exiting after 10 errors. mytuser does not execute the mozilla_per_role_template to these types are not valid. genhomedircon is only supposed to generate valid context. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFG+mYfrlYvE4MpobMRApsVAJ0QZKye8RZl+5To2e+5Y/XRx4CO/gCgxi01 U7EXmMgIuDtsH81KGKKhpeI= =pcqC -----END PGP SIGNATURE----- -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.