Installing selinux-policy-devel package, I could see the following error message when RPM scriptlet executes: ~~~ # /usr/bin/sepolgen-ifgen Illegal character '"' ~~~ This is seen with an uncustomized fresh system. Reproducible: Always Steps to Reproduce: 1. Install selinux-policy-devel package Actual Results: Illegal character '"' Expected Results: No such error message
It's caused by filetrans_pattern($1, virt_var_run_t, virtinterfaced_var_run_t, dir, "interfac(e)") in /usr/share/selinux/devel/include/contrib/virt.if "interfac(e)" is probably a typo, "(e)" is same as "e" This change would fix it: --- /usr/share/selinux/devel/include/contrib/virt.if.rpm 2023-12-12 11:36:05.608235197 -0500 +++ /usr/share/selinux/devel/include/contrib/virt.if 2023-12-12 11:36:20.212343183 -0500 @@ -164,7 +164,7 @@ filetrans_pattern($1, virt_driver_var_run, virt_common_var_run_t, dir, "common") filetrans_pattern($1, virt_var_run_t, virt_common_var_run_t, dir, "common") - filetrans_pattern($1, virt_var_run_t, virtinterfaced_var_run_t, dir, "interfac(e)") + filetrans_pattern($1, virt_var_run_t, virtinterfaced_var_run_t, dir, "interface") filetrans_pattern($1, virt_var_run_t, virtnodedevd_var_run_t, dir, "nodedev") filetrans_pattern($1, virt_var_run_t, virtnwfilterd_var_run_t, dir, "nwfilter") filetrans_pattern($1, virt_var_run_t, virtsecretd_var_run_t, dir, "secrets") But sepolgen-ifgen should not fail on it.
This bug appears to have been reported against 'rawhide' during the Fedora Linux 40 development cycle. Changing version to 40.
This bug is still present in selinux-policy-devel-40.17-1.fc40.noarch
This really needs to be fixed in bz#2254206 *** This bug has been marked as a duplicate of bug 2254206 ***