[gentoo-hardened] Problems emerging new hardened sources - gentoo-hardened

From:	Tiago Lima <tiago.lima@×××××.pt>
To:	gentoo-hardened@l.g.o
Cc:	gentoo-user@l.g.o
Subject:	[gentoo-hardened] Problems emerging new hardened sources
Date:	Sun, 08 Feb 2004 22:15:56
Message-Id:	`200402082158.59247.tiago.lima@vianw.pt`

1

Hi,

2

3

I have a server with SE Linux using and old policy (from 2003 12 25 :). I 

4

havent synced the system for quite some time and I decided to sync it 

5

today...

6

7

Some system info:

8

9

	*  sec-policy/selinux-base-policy

10

	      Latest version available: 20040202

11

	      Latest version installed: 20031225

12

	      Size of downloaded files: 59 kB

13

	      Homepage:    http://www.gentoo.org/proj/en/hardened/selinux/

14

	      Description: Gentoo base policy for SELinux

15

	      License:     GPL-2

16

17

	*  sys-kernel/hardened-sources

18

	      Latest version available: 2.4.24

19

	      Latest version installed: 2.4.22-r2

20

	      Size of downloaded files: 31,081 kB

21

	      Homepage:    http://www.gentoo.org/proj/en/hardened/

22

	      Description: Special Security Hardened Gentoo Linux Kernel

23

	      License:     GPL-2

24

25

After the sync I tried to "emerge -u hardened-sources" and when on the install 

26

fase it appear this:

27

28

make[1]: Leaving directory 

29

`/var/tmp/portage/hardened-sources-2.4.24/work/linux-2.4.24-hardened/Documentation/DocBook'

30

>>> version.h compiled successfully.

31

>>> Source unpacked.

32

33

>>> Install hardened-sources-2.4.24

34

into /var/tmp/portage/hardened-sources-2.4.24/image/ category sys-kernel

35

>>> Copying sources...

36

man:

37

prepallstrip:

38

strip:

39

strip:

40

>>> Completed installing into /var/tmp/portage/hardened-sources-2.4.24/image/

41

42

>>> Merging sys-kernel/hardened-sources-2.4.24 to /

43

sfperms

44

selinux

45

>>> Setting SELinux security labels

46

make: Entering directory `/etc/security/selinux/src/policy'

47

cat file_contexts/types.fc file_contexts/program/bootloader.fc 

48

file_contexts/program/checkpolicy.fc file_contexts/program/chkpwd.fc 

49

file_contexts/program/chroot.fc file_contexts/program/crack.fc 

50

file_contexts/program/crond.fc file_contexts/program/crontab.fc 

51

file_contexts/program/devfsd.fc file_contexts/program/dhcpc.fc 

52

file_contexts/program/fsadm.fc file_contexts/program/getty.fc 

53

file_contexts/program/hwclock.fc file_contexts/program/ifconfig.fc 

54

file_contexts/program/inetd.fc file_contexts/program/init.fc 

55

file_contexts/program/initrc.fc file_contexts/program/iptables.fc 

56

file_contexts/program/ldconfig.fc file_contexts/program/load_policy.fc 

57

file_contexts/program/login.fc file_contexts/program/mkinitrd.fc 

58

file_contexts/program/modutil.fc file_contexts/program/mount.fc 

59

file_contexts/program/mta.fc file_contexts/program/netutils.fc 

60

file_contexts/program/newrole.fc file_contexts/program/nscd.fc 

61

file_contexts/program/ntpd.fc file_contexts/program/opt.fc 

62

file_contexts/program/pamconsole.fc file_contexts/program/passwd.fc 

63

file_contexts/program/ping.fc file_contexts/program/portage.fc 

64

file_contexts/program/pppd.fc file_contexts/program/rsyncd.fc 

65

file_contexts/program/selopt.fc file_contexts/program/setfiles.fc 

66

file_contexts/program/ssh.fc file_contexts/program/su.fc 

67

file_contexts/program/syslogd.fc file_contexts/program/tcpd.fc 

68

file_contexts/program/useradd.fc file_contexts/users.fc 

69

> /var/tmp/portage/hardened-sources-2.4.24/temp/file_contexts

70

make: Leaving directory `/etc/security/selinux/src/policy'

71

/usr/sbin/setfiles:  read 534 specifications

72

/usr/sbin/setfiles:  invalid context system_u:object_r:mnt_t on line number 49

73

/usr/sbin/setfiles:  invalid context system_u:object_r:mnt_t on line number 50

74

/usr/sbin/setfiles:  invalid context system_u:object_r:cpu_device_t on line 

75

number 115

76

/usr/sbin/setfiles:  invalid context system_u:object_r:scsi_generic_device_t 

77

on line number 132

78

/usr/sbin/setfiles:  invalid context system_u:object_r:tape_device_t on line 

79

number 200

80

/usr/sbin/setfiles:  invalid context system_u:object_r:tape_device_t on line 

81

number 201

82

/usr/sbin/setfiles:  invalid context system_u:object_r:tape_device_t on line 

83

number 202

84

/usr/sbin/setfiles:  invalid context system_u:object_r:tape_device_t on line 

85

number 203

86

/usr/sbin/setfiles:  invalid context system_u:object_r:tape_device_t on line 

87

number 204

88

/usr/sbin/setfiles:  invalid context system_u:object_r:tape_device_t on line 

89

number 205

90

Exiting after 10 errors.

91

92

!!! ERROR: sys-kernel/hardened-sources-2.4.24 failed.

93

!!! Function dyn_preinst, Line 909, Exitcode 1

94

!!! Failed to set SELinux security labels.

95

96

!!! FAILED preinst: 1

97

98

Am I missing something here?

99

100

Thanks in advance,

101

	Tiago Lima

102

103

104

--

105

gentoo-hardened@g.o mailing list

Gentoo Archives: gentoo-hardened

Replies

1	Hi,
2
3	I have a server with SE Linux using and old policy (from 2003 12 25 :). I
4	havent synced the system for quite some time and I decided to sync it
5	today...
6
7	Some system info:
8
9	* sec-policy/selinux-base-policy
10	Latest version available: 20040202
11	Latest version installed: 20031225
12	Size of downloaded files: 59 kB
13	Homepage: http://www.gentoo.org/proj/en/hardened/selinux/
14	Description: Gentoo base policy for SELinux
15	License: GPL-2
16
17	* sys-kernel/hardened-sources
18	Latest version available: 2.4.24
19	Latest version installed: 2.4.22-r2
20	Size of downloaded files: 31,081 kB
21	Homepage: http://www.gentoo.org/proj/en/hardened/
22	Description: Special Security Hardened Gentoo Linux Kernel
23	License: GPL-2
24
25	After the sync I tried to "emerge -u hardened-sources" and when on the install
26	fase it appear this:
27
28	make[1]: Leaving directory
29	`/var/tmp/portage/hardened-sources-2.4.24/work/linux-2.4.24-hardened/Documentation/DocBook'
30	>>> version.h compiled successfully.
31	>>> Source unpacked.
32
33	>>> Install hardened-sources-2.4.24
34	into /var/tmp/portage/hardened-sources-2.4.24/image/ category sys-kernel
35	>>> Copying sources...
36	man:
37	prepallstrip:
38	strip:
39	strip:
40	>>> Completed installing into /var/tmp/portage/hardened-sources-2.4.24/image/
41
42	>>> Merging sys-kernel/hardened-sources-2.4.24 to /
43	sfperms
44	selinux
45	>>> Setting SELinux security labels
46	make: Entering directory `/etc/security/selinux/src/policy'
47	cat file_contexts/types.fc file_contexts/program/bootloader.fc
48	file_contexts/program/checkpolicy.fc file_contexts/program/chkpwd.fc
49	file_contexts/program/chroot.fc file_contexts/program/crack.fc
50	file_contexts/program/crond.fc file_contexts/program/crontab.fc
51	file_contexts/program/devfsd.fc file_contexts/program/dhcpc.fc
52	file_contexts/program/fsadm.fc file_contexts/program/getty.fc
53	file_contexts/program/hwclock.fc file_contexts/program/ifconfig.fc
54	file_contexts/program/inetd.fc file_contexts/program/init.fc
55	file_contexts/program/initrc.fc file_contexts/program/iptables.fc
56	file_contexts/program/ldconfig.fc file_contexts/program/load_policy.fc
57	file_contexts/program/login.fc file_contexts/program/mkinitrd.fc
58	file_contexts/program/modutil.fc file_contexts/program/mount.fc
59	file_contexts/program/mta.fc file_contexts/program/netutils.fc
60	file_contexts/program/newrole.fc file_contexts/program/nscd.fc
61	file_contexts/program/ntpd.fc file_contexts/program/opt.fc
62	file_contexts/program/pamconsole.fc file_contexts/program/passwd.fc
63	file_contexts/program/ping.fc file_contexts/program/portage.fc
64	file_contexts/program/pppd.fc file_contexts/program/rsyncd.fc
65	file_contexts/program/selopt.fc file_contexts/program/setfiles.fc
66	file_contexts/program/ssh.fc file_contexts/program/su.fc
67	file_contexts/program/syslogd.fc file_contexts/program/tcpd.fc
68	file_contexts/program/useradd.fc file_contexts/users.fc
69	> /var/tmp/portage/hardened-sources-2.4.24/temp/file_contexts
70	make: Leaving directory `/etc/security/selinux/src/policy'
71	/usr/sbin/setfiles: read 534 specifications
72	/usr/sbin/setfiles: invalid context system_u:object_r:mnt_t on line number 49
73	/usr/sbin/setfiles: invalid context system_u:object_r:mnt_t on line number 50
74	/usr/sbin/setfiles: invalid context system_u:object_r:cpu_device_t on line
75	number 115
76	/usr/sbin/setfiles: invalid context system_u:object_r:scsi_generic_device_t
77	on line number 132
78	/usr/sbin/setfiles: invalid context system_u:object_r:tape_device_t on line
79	number 200
80	/usr/sbin/setfiles: invalid context system_u:object_r:tape_device_t on line
81	number 201
82	/usr/sbin/setfiles: invalid context system_u:object_r:tape_device_t on line
83	number 202
84	/usr/sbin/setfiles: invalid context system_u:object_r:tape_device_t on line
85	number 203
86	/usr/sbin/setfiles: invalid context system_u:object_r:tape_device_t on line
87	number 204
88	/usr/sbin/setfiles: invalid context system_u:object_r:tape_device_t on line
89	number 205
90	Exiting after 10 errors.
91
92	!!! ERROR: sys-kernel/hardened-sources-2.4.24 failed.
93	!!! Function dyn_preinst, Line 909, Exitcode 1
94	!!! Failed to set SELinux security labels.
95
96	!!! FAILED preinst: 1
97
98	Am I missing something here?
99
100	Thanks in advance,
101	Tiago Lima
102
103
104	--
105	gentoo-hardened@g.o mailing list