Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian

From: Chris Wright (chrisw@private)
Date: Thu Feb 05 2004 - 10:06:56 PST

Next message: Russell Coker: "Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian"

Previous message: Sander: "Re: very amazing, that bsdjail module"
In reply to: Torben Krause: "Trouble with installation of lsm kernel patch and SE linux Packages on Debian"
Next in thread: Russell Coker: "Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian"
Reply: Russell Coker: "Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ Cc: to selinux list, which is a better place to ask these question ]

* Torben Krause (torben.krause@private) wrote:
> Here my Questions:
> 
> Which kernel patch must i use for lsm, kernel-patch-2.4-oldlsm or 
> kernel-patch-2.4-lsm ? And is there a for 2.4.23/woody ?
> 
> Furthermore, i want to know whether i've understood the information on 
> russel cokers webpage  right: new SE Linux is only available to 2.4 as 
> unstable (beside 2.6 kernel). Old SE Linux is available as unstable and 
> stable to 2.4.
> 
> Is that right ?!?

Russell is the best person to answer this.  Similar questions have been
asked on the selinux mailing list.  I believe there is a current selinux
that is backported to 2.4 and available on Woody.  According to Russell,
update /etc/apt/sources.list with:
deb http://www.microcomaustralia.com.au/debian/ stable selinux main


> So, first i patched my kernel with the lsm infrastructure 
> (kernel-patch-2.4-lsm_2003.04.07 as .deb) with make-kpkg. In the next 
> step i installed
> libselinux-dev_2003081307,selinux-policy-default_1:1.1-3.bam.1 and 
> selinux, the management utilities. I've taken the files from deb 
> http://selinux.lemuria.org/debian/ stable selinux main.
> 
> While the installion process of the selinux-policy-default i got the 
> follwing error mesage:
> 
> Setting up selinux-policy-default (1.1-3.bam.1) ...
> SE Linux not running so files not relabeled.
> Run 'make -C /etc/selinux/ relabel' manually to relabel.
> /usr/bin/checkpolicy:  loading policy configuration from 
> /etc/security/selinux/src/policy.conf
> ERROR 'parse error' at token 'normal_config_file_read_access' on line
> 84244: normal_config_file_read_access(spamd_t)
> 
> /usr/bin/checkpolicy:  error(s) encountered while parsing configuration
> make: *** [/etc/security/selinux/policy.12] Error 1
> dpkg: error processing selinux-policy-default (--configure):
>   subprocess post-installation script returned error exit status 2
> Errors were encountered while processing:
>   selinux-policy-default
> 
> 
> What is wrong there ?

I don't know, I'm sure someone on the selinux list can help you here.

thanks,
-chris
-- 
Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net

Next message: Russell Coker: "Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian"
Previous message: Sander: "Re: very amazing, that bsdjail module"
In reply to: Torben Krause: "Trouble with installation of lsm kernel patch and SE linux Packages on Debian"
Next in thread: Russell Coker: "Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian"
Reply: Russell Coker: "Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Feb 05 2004 - 10:07:58 PST