Bug 121982 - selinux seems not to be disabled for rpm!?
Summary: selinux seems not to be disabled for rpm!?
Keywords:
Status: CLOSED RAWHIDE
Alias: None
Product: Fedora
Classification: Fedora
Component: libselinux
Version: rawhide
Hardware: i386
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Daniel Walsh
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2004-04-29 14:46 UTC by Ralph Mengen
Modified: 2007-11-30 22:10 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2004-06-10 17:52:54 UTC
Type: ---
Embargoed:


Attachments (Terms of Use)
Messages from selinux when using rpm (146.04 KB, text/plain)
2004-04-29 14:47 UTC, Ralph Mengen
no flags Details

Description Ralph Mengen 2004-04-29 14:46:07 UTC
Description of problem:
I installed a fresh FC2 test3 (NO update). Everything is ok and 'cat
/etc/sysconfig/selinux' gives:
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
#       enforcinfg - SELinux security policy is enforced.
#       permissive - SELinux prints warnings instead of enforcing.
#       disabled - No SELinux policy is loaded.
SELINUX=disabled

So I thought SELINUX is disabled (as stated in the announcement of
test3), but when I downloaded some RPMs and tried to install them I
got many errors/warnings from the selinux-system like

/etc/security/selinux/file_contexts:  invalid context
system_u:object_r:default_t on line number 39
/etc/security/selinux/file_contexts:  invalid context
system_u:object_r:root_t on line number 44

(see the whole text in the attachment). When I boot with the cmd
'selinux=0' I received the error message 'cat:
/proc/self/attr/current: Invalid argument' while booting (which comes
from the '/etc/rc.sysinit') and the 'rpm -ivh ...' does work without
those messages.

So I wonder why SELINUX is not switched off when I use 'rpm'.

Version-Release number of selected component (if applicable):


How reproducible:
always after installing the system

Steps to Reproduce:
1. Install FC2 test3 (accepting all defaults)
2. get a RPM via FTP
3. rpm -ivh <file>.rpm

Comment 1 Ralph Mengen 2004-04-29 14:47:26 UTC
Created attachment 99788 [details]
Messages from selinux when using rpm

Comment 2 Ivo Sarak 2004-04-29 15:57:47 UTC
I made a FC2 Test3 install from scratch and dmesg is saying this:

Security Scaffold v1.0.0 initialized
SELinux:  Initializing.
SELinux:  Starting in permissive mode
There is already a security framework initialized, register_security
failed.
Failure registering capabilities with the kernel
selinux_register_security:  Registering secondary module capability
Capability LSM initialized

So is the SELinux disabled or not?

Comment 3 Ralph Mengen 2004-05-15 15:33:09 UTC
FYI:

Today I reinstalled FC2 Test3 + all newer packages from
rawhide/development and my problem is gone....



Note You need to log in before you can comment on or make changes to this bug.