Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Sven Vermeulen <swift@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/kernel/
Date: Thu, 02 Mar 2017 10:18:02
Message-Id: 1488449812.ee9f1937dfcafbac9c687ee2f79d33bd7b54bec2.swift@gentoo
1 commit: ee9f1937dfcafbac9c687ee2f79d33bd7b54bec2
2 Author: Nicolas Iooss <nicolas.iooss <AT> m4x <DOT> org>
3 AuthorDate: Mon Feb 27 21:24:02 2017 +0000
4 Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org>
5 CommitDate: Thu Mar 2 10:16:52 2017 +0000
6 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=ee9f1937
7
8 devices: fix Debian file contexts
9
10 When using setfiles to validate file contexts of Debian modular policy
11 (with DISTRO=debian and MONOLITHIC=n), it fails with:
12
13 tmp/all_mods.fc: line 527 is missing fields
14 tmp/all_mods.fc: line 527 is missing fields
15 tmp/all_mods.fc: Invalid argument
16
17 Here is the content of tmp/all_mods.fc around line 527:
18
19 # this is a static /dev dir "backup mount"
20 # if you want to disable udev, youll have to boot permissive and relabel!
21 /dev/\.static -d system_u:object_r:device_t
22 /dev/\.static/dev -d system_u:object_r:device_t
23 /dev/\.static/dev/(.*)? <<none>>
24 '
25
26 The quote of "you'll" has been eaten by m4 and there is a spurious quote
27 on the last line, which is reported by setfiles. Fix this by removing
28 the quote in the comment.
29
30 Here is an example of a failed build on Travis-CI:
31 https://travis-ci.org/fishilico/selinux-refpolicy-patched/jobs/205951446
32
33 policy/modules/kernel/devices.fc | 2 +-
34 1 file changed, 1 insertion(+), 1 deletion(-)
35
36 diff --git a/policy/modules/kernel/devices.fc b/policy/modules/kernel/devices.fc
37 index 19cd9724..84219a87 100644
38 --- a/policy/modules/kernel/devices.fc
39 +++ b/policy/modules/kernel/devices.fc
40 @@ -185,7 +185,7 @@ ifdef(`distro_suse', `
41
42 ifdef(`distro_debian',`
43 # this is a static /dev dir "backup mount"
44 -# if you want to disable udev, you'll have to boot permissive and relabel!
45 +# if you want to disable udev, you will have to boot permissive and relabel!
46 /dev/\.static -d gen_context(system_u:object_r:device_t,s0)
47 /dev/\.static/dev -d gen_context(system_u:object_r:device_t,s0)
48 /dev/\.static/dev/(.*)? <<none>>
Report Message
Find on MARC Find on Google Groups