The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Operating Systems > Linux
Reload this Page SELinux policy compiler errors for 2.6.26.8.tex1
.
google unix.com

Forums Register Forum RulesLinksAlbums FAQ Members List Calendar Search Today's Posts Mark Forums Read



Thread: SELinux policy compiler errors for 2.6.26.8.tex1
View Single Post in the UNIX and Linux Forums - Click on the Thread or Permalink to View Entire Thread -->
  #1 (permalink)  
Old 01-04-2009
septima.pars's Avatar
septima.pars septima.pars is offline
Registered User
  
 

Join Date: Jan 2009
Location: Chicago
Posts: 31
SELinux policy compiler errors for 2.6.26.8.tex1
Hello all!

I am trying to enable SELinux on bootup for my supported kernel
2.6.26.8.tex1

I am running PCLinuxOS 2009 Beta 2 which is based on Mandriva/Mandrake

From my reading, I know that I am able to set SELinux to boot (preferably in passive mode) however this would still 'change' my files; therefore I would need to run the utility/command: "setfiles"

setfiles
_____________________________________________

The problem I am having relates to the supporting files needed to run the application effectively. For my linux distribution, the config/info file is located here:

/usr/src/linux-2.6.26.8.tex1/security/selinux/Kconfig

It states:

Quote:
You will .. need a policy configuration and a labeled filesystem.
...obtain the policy compiler (checkpolicy), the utility for
labeling filesystems (setfiles), and an example policy configuration
from Security-Enhanced Linux
downloading the needed packages from
Download stable SELinux release,
I then try to compile but receive numerous errors such as this example for the checkpolicy package (which contains the setfiles) command


Code:

[root@localhost checkpolicy-1.34.7]# make -f Makefile
cc -g -Wall -Werror -O2 -pipe -fno-strict-aliasing -I. -I/usr/include -o checkpolicy.o -c checkpolicy.c
checkpolicy.c:73:37: error: sepol/policydb/policydb.h: No such file or directory
checkpolicy.c:74:37: error: sepol/policydb/services.h: No such file or directory
checkpolicy.c:75:40: error: sepol/policydb/conditional.h: No such file or directory
checkpolicy.c:76:38: error: sepol/policydb/hierarchy.h: No such file or directory
checkpolicy.c:77:34: error: sepol/policydb/flask.h: No such file or directory
checkpolicy.c:78:35: error: sepol/policydb/expand.h: No such file or directory
checkpolicy.c:79:33: error: sepol/policydb/link.h: No such file or directory
In file included from checkpolicy.c:82:
checkpolicy.h:4:36: error: sepol/policydb/ebitmap.h: No such file or directory
In file included from checkpolicy.c:82:
checkpolicy.h:7: error: expected specifier-qualifier-list before ‘ebitmap_t’
In file included from checkpolicy.c:83:
parse_util.h:33: error: expected ‘)’ before ‘*’ token

...

checkpolicy.c:1011: warning: format ‘%s’ expects type ‘char *’, but argument 4 has type ‘int’
checkpolicy.c:1019: warning: implicit declaration of function ‘strcpy’
checkpolicy.c:1019: warning: incompatible implicit declaration of built-in function ‘strcpy’
checkpolicy.c:1022: warning: format ‘%s’ expects type ‘char *’, but argument 4 has type ‘int’
checkpolicy.c:392: warning: unused variable ‘pf’
checkpolicy.c:376: warning: unused variable ‘avd’
make: *** [checkpolicy.o] Error 1

I turns out I am unable to compile any of the packages. Am I missing something very obvious or is this because of all the changes the kernel versions go through in relation to drivers?

_________________________________________

At this point, I am seriously considering just building the kernel from scratch but my question is, if i am to do this, how difficult would it be to 'copy' the final working settings from this configuration into my boot sequence for my present distribution? Would this be unnecessarily messy? Any other suggestions?

mouse