Description of problem: After applying selinux-policy-targeted.noarch 2.4.6-23.fc6 and selinux-policy-devel.noarch 2.4.6-23.fc6, attempting to set a local policy results in: # cd /etc/local-selinux-policy/ # /usr/bin/make -f /usr/share/selinux/devel/Makefile Compiling targeted local module /usr/bin/checkmodule: loading policy configuration from tmp/local.tmp tmp/all_interfaces.conf:7820:ERROR 'syntax error' at token 'allow' on line 3871: allow staff_evolution_alarm_t staff_t:fifo_file { getattr write }; /usr/bin/checkmodule: error(s) encountered while parsing configuration make: *** [tmp/local.mod] Error 1 Version-Release number of selected component (if applicable): selinux-policy-targeted.noarch 2.4.6-23.fc6 and selinux-policy-devel.noarch 2.4.6-23.fc6 How reproducible: Always Steps to Reproduce: 1. /usr/bin/make -f /usr/share/selinux/devel/Makefile 2. observe error 3. Actual results: tmp/all_interfaces.conf:7820:ERROR 'syntax error' at token 'allow' on line 3871: allow staff_evolution_alarm_t staff_t:fifo_file { getattr write }; /usr/bin/checkmodule: error(s) encountered while parsing configuration make: *** [tmp/local.mod] Error 1 Expected results: No error Additional info: This happens on all the systems I have (both x86 and x86_64).
This is a compiling/source code problem. Not a bug. Please bring your question to one of the public list.
I'm sorry, but that's not the case. Even with an empty local policy, the error still occurs, which indicates that the distributed source policy is in error.
Ok now I see. This is fixed in selinux-policy-2.4.6-27 *** This bug has been marked as a duplicate of 222548 ***