SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: I am concerned about putting genhomedircon changes in libsemanage into Fedora 8. This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Stephen Smalley <sds_at_tycho.nsa.gov> Date: Wed, 26 Sep 2007 10:52:31 -0400 On Wed, 2007-09-26 at 10:47 -0400, Joshua Brindle wrote: > Daniel J Walsh wrote: *> > -----BEGIN PGP SIGNED MESSAGE-----* > > Hash: SHA1 > > > > Daniel J Walsh wrote: > > > >> I may hold off on this so we can get a full Rawhide cycle on it. > >> genhomedircon has many corner cases and do not want to risk blowing F-8 > >> now that we are at Feature Freeze. > >> All the rest of the patches have been integrated. > > > > > > > > The genhomedircon replacement is broken in libsemanage. It is > > generating invalid file context. The python version verified the > > file context it was creating were valid before assiging them. This is > > resulting in Fedora Core 8 not being able to autorelabel > > > > > > The python version did the wrong thing entirely. It validated the > contexts against the running policy in the kernel, which breaks when you > try to do an operation on another store. Also since we moved > genhomedircon inside of libsemanage the new policy isn't even loaded yet > so we can't validate against the kernel (or the new types added by the > module being added would be 'invalid'). The only real way to validate > the contexts now would be to load the newly generated policy into the > libsepol security server and to the context validations on it. i.e. sepol_set_policydb_from_file() on the policy, and then sepol_check_context() on the contexts, as is done by setfiles -c. > This would work, it would just take extra time at module load time. It > seems like the real problem is that the invalid contexts are being > generated in the first place, relying on genhomedircon to sanity check > your file contexts seems like you are punting the problem. I think the problem is that the templating mechanism isn't sufficiently flexible; the per-role contexts aren't necessarily valid for all cases. In any event, this is a regression between the old genhomedircon and the libsemanage reimplementation and should have been called out as a change in behavior in the patch set, even if the old behavior was flawed. So I guess Dan needs to stay with the old genhomedircon and libsemanage for Fedora 8. -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Wed 26 Sep 2007 - 11:01:10 EDT This message: [ Message body ] Next message: Karl MacMillan: "Re: I am concerned about putting genhomedircon changes in libsemanage into Fedora 8." Previous message: Daniel J Walsh: "Re: ANN: Updated SELinux core userland release" In reply to: Joshua Brindle: "Re: I am concerned about putting genhomedircon changes in libsemanage into Fedora 8." Next in thread: Stephen Smalley: "Re: I am concerned about putting genhomedircon changes in libsemanage into Fedora 8." Reply: Stephen Smalley: "Re: I am concerned about putting genhomedircon changes in libsemanage into Fedora 8." Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom