| 1 |
On Tue, May 29, 2012 at 05:30:41PM +0200, Hinnerk van Bruinehsen wrote: |
| 2 |
> I've got some problems with r11 on mcs. The error is: |
| 3 |
> |
| 4 |
> Creating mcs base module base.conf |
| 5 |
> Compiling mcs base module |
| 6 |
> /usr/bin/checkmodule: loading policy configuration from base.conf |
| 7 |
> base.conf:2184:ERROR 'permission execute is not defined' at token ';' |
| 8 |
> on line 2184: |
| 9 |
> ( h1 dom h2 ); |
| 10 |
> mlsconstrain db_schema { drop getattr setattr relabelfrom execute } |
| 11 |
> /usr/bin/checkmodule: error(s) encountered while parsing configuration |
| 12 |
> make: *** [tmp/base.mod] Error 1 |
| 13 |
> |
| 14 |
> The error is introduced in |
| 15 |
> "0098-all-sepostgresql_updates_backport-r11.patch". |
| 16 |
> |
| 17 |
> In older versions db_schema is db_language (which by the way is in the |
| 18 |
> older versions defined two times). If I remove the "execute" from |
| 19 |
> db_schema it builds. I don't know if db_schema needs execute, if not |
| 20 |
> it should be dropped, otherwise execute should be defined for |
| 21 |
> db_schema, I think. |
| 22 |
|
| 23 |
You're right; the upstream patch didn't apply cleanly so I had to do some |
| 24 |
stuff manually, and this one slipped. |
| 25 |
|
| 26 |
There's also a "ype_transition" somewhere that should be "type_transition". |
| 27 |
|
| 28 |
Wkr, |
| 29 |
Sven Vermeulen |
Archives