From: Seulkiro P. <seu...@gm...> - 2005-06-08 08:59:10
|
Hi,=20 I have been testing for SELinux with a test tool that I found in http://ltp.sf.net. after downloading the test tool, I excuted testscript/test_selinux.sh. but, error occured as below.. ------------------------------------------------------------------------ mkdir -p /etc/selinux/targeted/policy /usr/bin/checkpolicy -o /etc/selinux/targeted/policy/policy.18 policy.conf /usr/bin/checkpolicy: loading policy configuration from policy.conf domains/misc/test_global.te:36:ERROR 'syntax error' at token 'can_setcon' on line 6510: can_setcon(testdomain) # Let the test domains set their current, exec and fscreate contexts. /usr/bin/checkpolicy: error(s) encountered while parsing configuration make[1]: *** [/etc/selinux/targeted/policy/policy.18] error 1 make[1]: Leaving directory `/etc/selinux/targeted/src/policy' make: *** [load] error 2 Failed to build test policy, therefore aborting test run. ------------------------------------------------------------------------ So I patched kernel, libselinux and selinux-policy-targeted packages. Finally, I managed to carry on the test with the packages which I patched.(kernel 2.6.9) the context of patched is below... http://www.nsa.gov/selinux/list-archive/0411/9693.cfm http://lwn.net/Articles/113916/ [present problem] so, the compilation and execution of test tool are normal. but, the created log, "selinux.outfiles" in "/results" directory has a prob= lem. the following is a part of the log remained in the directory. ------------------------------------------------------------------------ <<<test start>>> tag=3DSELinux01 stime=3D1116830758 cmdline=3D"selinux_capable_file.sh" contacts=3D" " analysis=3Dexit initiation_status=3D"pan(ltp-selinux) : execvp of 'selinux_capable.sh' (tag SELinux01) failed. errno:2 No such file or directory <<<test_output>>> <<<execution_status>>> duration=3D0 termination_type=3Dexited termination_id=3D2 corefile=3Dno=20 cutime=3D0 cstime=3D0 ------------------------------------------------------------------------ I think that the each script files in testcases/kernel/security/selinux-testsuite/tests directory has to be executed by one by one. but It seems that the test tool can not find the scripts in that directory. so, I tested on kernel 2.6.11 but that problem is the same... what do you think about this? -- present OS environment -- OS : RHEL4.0 kernel : 2.6.9 (patched http://www.nsa.gov/selinux/list-archive/0411/9693.cfm) and 2.6.11 selinux-policy-targeted-source-1.17.30 libselinux-1.19.1-7 --=20 Seulkiro Park (seu...@gm...) Registered Linux User: #341737 GnuPG Fingerprint: B6AA 1322 9E0B 9ECB 567C DB92 E846 BE58 BC4D D838 |