Package: selinux-policy-refpolicy-src
Version: 0.0.20060813-2
When trying to compile a modular targeted policy (using make load), the
build fails with the following error:
/etc/selinux/refpolicy/contexts/files/file_contexts: Multiple different
specifications for /usr/bin/mplayer
(system_u:object_r:unconfined_execmem_exec_t and
system_u:object_r:mplayer_exec_t)
This happens because the file context for /usr/bin/mplayer is defined in
/etc/selinux/refpolicy/src/policy/policy/modules/apps/mplayer.fc to make it
run within the mplayer_exec_t domain. In the case of a targeted policy,
however, /etc/selinux/refpolicy/src/policy/policy/modules/system/unconfined.fc
tries to make it run within the unconfined_execmem_exec_t domain.
The problem is fixed by moving the line for /usr/bin/mplayer in mplayer.fc
so it lies within the ifdef, thus preventing it being compiled into targeted
policies.
Regards
sr
-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.17
Locale: LANG=en_GB, LC_CTYPE=en_GB (charmap=ISO-8859-1)
Versions of packages selinux-policy-refpolicy-src depends on:
ii checkpolicy 1.30.10-2 SELinux policy compiler
ii gawk 1:3.1.5.dfsg-4 GNU awk, a pattern scanning
ii policycoreutils 1.30.26-3 SELinux core policy utilities
ii python 2.4.3-11 An interactive high-level
Versions of packages selinux-policy-refpolicy-src recommends:
ii setools 2.4-1 Tresys tools for managing SE
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
