selinux March 2010 archive
Main Archive Page > Month Archives  > selinux archives
selinux: Re: working linux and busybox versions

Re: working linux and busybox versions

From: KaiGai Kohei <kaigai_at_nospam>
Date: Wed Mar 17 2010 - 07:48:28 GMT
To: Manvendra Pratap Singh <manav.emb@gmail.com>

(2010/03/17 16:12), Manvendra Pratap Singh wrote:
> Hi KaiGai,
>
> I checked /etc/selinux/base_policy/contexts/default_contexts and
> /etc/selinux/base_policy/contexts/users/root both in my rootfs and it is
> in correct place. But it still giving me same SID problem. Please give
> some idea.

Does it have correct format? Does it contains an entry which matches
with the security context of your logind daemon?

If your policy does not define domain-transitions appropriately,
all the process may work with kernel_t, init_t or initrc_t.
If so, get_default_context() cannot find out configured entry.

What is your policy type? The standard reference policy?, or others?

Thanks,

> On Wed, Mar 17, 2010 at 11:38 AM, Manvendra Pratap Singh
> <manav.emb@gmail.com <mailto:manav.emb@gmail.com>> wrote:
>
> Thanks for reply KaiGai Kohei, I will follow your suggestion and let
> you know about it.
>
> ---
> Manav
> Hyderabad
>
> 2010/3/17 KaiGai Kohei <kaigai@ak.jp.nec.com
> <mailto:kaigai@ak.jp.nec.com>>
>
> (2010/03/17 13:22), Manvendra Pratap Singh wrote:
> > Can anyone suggest me good guide for SELinux on omap3
> (beagleboard). I
> > tried it myself but I am not able to login after booting. On
> loging in
> > root I get a msg "Cann't get SID for root". Please help me on
> this
> > issue. Here take a look at boot-log.
> >
> >
> > [ 0.000000] Security Framework initialized
> > [ 0.000000] SELinux: Initializing.
> >
> >
> > beagleboard login: root
> > login: can't get SID for root
>
> This message come from logind applet of busybox.
>
> It tries to fetch the default security context of the root session.
>
> Put "/etc/selinux/<SELINUXTYPE>/contexts/default_contexts" or
> "/etc/selinux/<SELINUXTYPE>/contexts/users/root" correctly, and
> try it again.
>
> Thanks,
>
> >
> > Embinux Linux 1.1 beagleboard ttyS2
> >
> > beagleboard login:
> >
> >
> >
> > ---
> > Manav
> > Hyderabad
> >
> >
> >
> > On Thu, Mar 11, 2010 at 3:38 PM, Manvendra Pratap Singh
> > <manav.emb@gmail.com <mailto:manav.emb@gmail.com>
> <mailto:manav.emb@gmail.com <mailto:manav.emb@gmail.com>>> wrote:
> >
> > Thanks for the information. I asked about working busybox
> and linux
> > kernel versions because when I am enabling selinux in busybox
> > (1.13.0), it is giving me lot of compilation errors and I
> think some
> > code is also missing. Although the kernel (2.6.29) which
> I am using
> > is working fine. If you tell anything more on this then
> it will be a
> > great help.
> >
> >
> > --
> > Manav
> > Hyderabad
> >
> >
> >
> > On Wed, Mar 10, 2010 at 11:19 PM, Stephen Smalley
> <sds@tycho.nsa.gov <mailto:sds@tycho.nsa.gov>
> > <mailto:sds@tycho.nsa.gov <mailto:sds@tycho.nsa.gov>>> wrote:
> >
> > On Wed, 2010-03-10 at 22:44 +0530, Manvendra Pratap
> Singh wrote:
> > > Hi Stephen,
> > >
> > > May be I could not make myself clear to you. My question was
> > not about
> > > linux on omap3, it was about SELinux on omap3. Anyways thanks
> > for your
> > > reply. I will check the links given by you.
> >
> > SELinux isn't platform-specific, and is a component
> of the Linux 2.6
> > kernel.
> >
> > --
> > Stephen Smalley
> > National Security Agency
> >
> >
> >
>
>
> --
> KaiGai Kohei <kaigai@ak.jp.nec.com <mailto:kaigai@ak.jp.nec.com>>
>
>
>
>
>
> --
> Manav
> Hyderabad

-- KaiGai Kohei <kaigai@ak.jp.nec.com> -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.