Re: rpmbuild and selinux

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Stephen Smalley wrote:
On Wed, 2006-06-21 at 21:13 -0400, Daniel J Walsh wrote:
Jason L Tibbitts III wrote:
"SS" == Stephen Smalley <sds@xxxxxxxxxxxxx> writes:
SS> Is this in a chroot?

I am seeing the problem running a plain rpmbuild -ba, no chroot or
mock in sight.

 - J<
Is this happening selinux disabled? There is a printf in libselinux which is triggered when matchpatcon fails to verify a file context via the kernel. If the kernel is not running selinux this could happen.

Normally that is suppressed because default_canoncon checks whether
security_canonicalize_context() returned with errno ENOENT
(i.e. /selinux/context didn't exist, as with SELinux disabled or in a
chroot).  But the patch from Ian Kent for !selinux_mnt changes that
behavior unless those checks also set errno to ENOENT, which I added
upstream, but is _not_ in your FC5 backport.

Fixed in libselinux-1_30_3-4_fc5

--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list

[Index of Archives]     [Fedora Users]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux