The relabelling of files a second time as called for by the installation guide fails. I did it the first time while in the chroot environment and that was successful. After following the guide to umount and reboot the system I tried it directly from the installed environment (Live CD removed from CDROM and boot normally). Reproducible: Always Steps to Reproduce: 1. boot into system through grub (not LiveCD) 2. cd /etc/security/selinux/src/policy 3. make relabel Actual Results: * Relabeling filesystem types: ext2 ext3 xfs /usr/sbin/setfiles: invalid context system_u:object_r:default_t on line number 39 /usr/sbin/setfiles: invalid context system_u:object_r:root_t on line number 44 /usr/sbin/setfiles: invalid context system_u:object_r:home_root_t on line numbe r 53 /usr/sbin/setfiles: invalid context system_u:object_r:user_home_dir_t on line n umber 54 /usr/sbin/setfiles: invalid context system_u:object_r:user_home_t on line numbe r 55 /usr/sbin/setfiles: invalid context system_u:object_r:mnt_t on line number 59 /usr/sbin/setfiles: invalid context system_u:object_r:var_t on line number 64 /usr/sbin/setfiles: invalid context system_u:object_r:catman_t on line number 6 5 /usr/sbin/setfiles: invalid context system_u:object_r:catman_t on line number 6 6 /usr/sbin/setfiles: invalid context system_u:object_r:var_yp_t on line number 6 7 Exiting after 10 errors. /usr/sbin/setfiles: read 552 specifications make: *** [relabel] Error 1 Expected Results: Completed successfully !!! SELinux not loaded: SELinux is not enabled. Gentoo Base System version 1.4.10 Portage 2.0.50-r7 (x86, gcc-3.3.2, glibc-2.3.2-r9, 2.6.5-hardened-r3) ================================================================= System uname: 2.6.5-hardened-r3 i686 Pentium II (Deschutes) Autoconf: sys-devel/autoconf-2.59-r3 Automake: sys-devel/automake-1.8.3 ACCEPT_KEYWORDS="x86" AUTOCLEAN="yes" CFLAGS="-march=pentium2 -O3 -pipe" CHOST="i686-pc-linux-gnu" COMPILER="gcc3" CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3/share/config /usr/share/ config /var/qmail/control" CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d" CXXFLAGS="-march=pentium2 -O3 -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="autoaddcvs buildpkg ccache fixpackages sandbox sfperms strict userpriv " GENTOO_MIRRORS="http://gentoo.oregonstate.edu http://distro.ibiblio.org/pub/Linu x/distributions/gentoo" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="" SYNC="rsync://rsync.us.gentoo.org/gentoo-portage" USE="acl apache2 berkdb crypt doc fam hardened hardenedphp imap mmx mysql ncurse s nls pam perl python readline sasl selinux ssl tcpd x86 zlib"
Seems like your policy isn't loaded. Please do make load in the same directory.
Doing make load in the same directory says that there is nothing to be done to it. Afterwards I tried to do make relabel and got the same result. Is there a "make clean" command for removing the compiled files so that you can recompile the policy?
The installation guide needs to be updated. If you do the second 'make relabel' it should be preceded by 'make clean' and 'make load' before doing the second 'make relabel'. The error messages received up cleared up when those steps were taken.
