Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian

From: Chris Wright (chrisw@private)
Date: Thu Feb 05 2004 - 10:06:56 PST

  • Next message: Russell Coker: "Re: Trouble with installation of lsm kernel patch and SE linux Packages on Debian"

    [ Cc: to selinux list, which is a better place to ask these question ]
    
    * Torben Krause (torben.krause@private) wrote:
    > Here my Questions:
    > 
    > Which kernel patch must i use for lsm, kernel-patch-2.4-oldlsm or 
    > kernel-patch-2.4-lsm ? And is there a for 2.4.23/woody ?
    > 
    > Furthermore, i want to know whether i've understood the information on 
    > russel cokers webpage  right: new SE Linux is only available to 2.4 as 
    > unstable (beside 2.6 kernel). Old SE Linux is available as unstable and 
    > stable to 2.4.
    > 
    > Is that right ?!?
    
    Russell is the best person to answer this.  Similar questions have been
    asked on the selinux mailing list.  I believe there is a current selinux
    that is backported to 2.4 and available on Woody.  According to Russell,
    update /etc/apt/sources.list with:
    deb http://www.microcomaustralia.com.au/debian/ stable selinux main
    
    
    > So, first i patched my kernel with the lsm infrastructure 
    > (kernel-patch-2.4-lsm_2003.04.07 as .deb) with make-kpkg. In the next 
    > step i installed
    > libselinux-dev_2003081307,selinux-policy-default_1:1.1-3.bam.1 and 
    > selinux, the management utilities. I've taken the files from deb 
    > http://selinux.lemuria.org/debian/ stable selinux main.
    > 
    > While the installion process of the selinux-policy-default i got the 
    > follwing error mesage:
    > 
    > Setting up selinux-policy-default (1.1-3.bam.1) ...
    > SE Linux not running so files not relabeled.
    > Run 'make -C /etc/selinux/ relabel' manually to relabel.
    > /usr/bin/checkpolicy:  loading policy configuration from 
    > /etc/security/selinux/src/policy.conf
    > ERROR 'parse error' at token 'normal_config_file_read_access' on line
    > 84244: normal_config_file_read_access(spamd_t)
    > 
    > /usr/bin/checkpolicy:  error(s) encountered while parsing configuration
    > make: *** [/etc/security/selinux/policy.12] Error 1
    > dpkg: error processing selinux-policy-default (--configure):
    >   subprocess post-installation script returned error exit status 2
    > Errors were encountered while processing:
    >   selinux-policy-default
    > 
    > 
    > What is wrong there ?
    
    I don't know, I'm sure someone on the selinux list can help you here.
    
    thanks,
    -chris
    -- 
    Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net
    



    This archive was generated by hypermail 2b30 : Thu Feb 05 2004 - 10:07:58 PST