[DSE-Dev] Bug#983447: policycoreutils: Regression breaks selinux-autorelabel on boot due to wrong argument passing to fixfiles
bauen1
j2468h at gmail.com
Wed Feb 24 11:08:25 GMT 2021
Package: policycoreutils
Version: 3.1-2
Severity: grave
Justification: renders package unusable
User: selinux-devel at lists.alioth.debian.org
Usertags: selinux
X-Debbugs-Cc: j2468h at gmail.com
Dear Maintainer,
A recent change (commit 6a36aa28c on salsa.debian.org/selinux-team/policycoreutils) breaks relabling on boot.
In the selinux-autorelabel script, the contents of "/.autorelabel" are passed as arguments to fixfiles, but the quotations break fixfiles argument parsing, e.g. `/sbin/fixfiles "" restore` or `/sbin/fixfiles "-F "` (note the extra space).
This means that SELinux enabled systems can no longer be relabeled using `fixfiles onboot` or `fixfiles -F onboot`.
-- System Information:
Debian Release: bullseye/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 5.10.0-3-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: SELinux: enabled - Mode: Enforcing - Policy name: bauen1-policy
Versions of packages policycoreutils depends on:
ii libaudit1 1:3.0-2
ii libc6 2.31-9
ii libselinux1 3.1-3
ii libsemanage1 3.1-1+b2
ii libsepol1 3.1-1
ii lsb-base 11.1.0
ii selinux-utils 3.1-3
policycoreutils recommends no packages.
policycoreutils suggests no packages.
-- no debconf information
More information about the SELinux-devel
mailing list