I am running CentOS 7 in Vagrant and encountering an error installing from source:

From <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-i

<a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/us

make install-policy on centos7 about container-selinux HOT 4 CLOSED

containers commented on September 27, 2024

make install-policy on centos7

from container-selinux.

Comments (4)

dweomer commented on September 27, 2024

From #98 (comment):

Hmm, @ibuildthecloud pointed me at https://github.com/containers/container-selinux/tree/RHEL7.5, will give this a try.

The RHEL7.5 branch is a no:

[vagrant@localhost container-selinux]$ git status
# On branch RHEL7.5
nothing to commit, working directory clean
[vagrant@localhost container-selinux]$ make install-policy
make -f /usr/share/selinux/devel/Makefile container.pp
make[1]: Entering directory `/home/vagrant/container-selinux'
/usr/share/selinux/devel/include/contrib/container.if:14: Error: duplicate definition of container_runtime_domtrans(). Original definition on 14.
/usr/share/selinux/devel/include/contrib/container.if:33: Error: duplicate definition of container_runtime_exec(). Original definition on 61.
/usr/share/selinux/devel/include/contrib/container.if:52: Error: duplicate definition of container_search_lib(). Original definition on 98.
/usr/share/selinux/devel/include/contrib/container.if:71: Error: duplicate definition of container_exec_lib(). Original definition on 117.
/usr/share/selinux/devel/include/contrib/container.if:90: Error: duplicate definition of container_read_lib_files(). Original definition on 136.
/usr/share/selinux/devel/include/contrib/container.if:109: Error: duplicate definition of container_read_share_files(). Original definition on 155.
/usr/share/selinux/devel/include/contrib/container.if:131: Error: duplicate definition of container_exec_share_files(). Original definition on 238.
/usr/share/selinux/devel/include/contrib/container.if:149: Error: duplicate definition of container_manage_lib_files(). Original definition on 275.
/usr/share/selinux/devel/include/contrib/container.if:169: Error: duplicate definition of container_manage_lib_dirs(). Original definition on 332.
/usr/share/selinux/devel/include/contrib/container.if:205: Error: duplicate definition of container_lib_filetrans(). Original definition on 368.
/usr/share/selinux/devel/include/contrib/container.if:223: Error: duplicate definition of container_read_pid_files(). Original definition on 386.
/usr/share/selinux/devel/include/contrib/container.if:242: Error: duplicate definition of container_systemctl(). Original definition on 405.
/usr/share/selinux/devel/include/contrib/container.if:267: Error: duplicate definition of container_rw_sem(). Original definition on 430.
/usr/share/selinux/devel/include/contrib/container.if:285: Error: duplicate definition of container_use_ptys(). Original definition on 467.
/usr/share/selinux/devel/include/contrib/container.if:303: Error: duplicate definition of container_filetrans_named_content(). Original definition on 485.
/usr/share/selinux/devel/include/contrib/container.if:336: Error: duplicate definition of container_stream_connect(). Original definition on 538.
/usr/share/selinux/devel/include/contrib/container.if:355: Error: duplicate definition of container_spc_stream_connect(). Original definition on 559.
/usr/share/selinux/devel/include/contrib/container.if:376: Error: duplicate definition of container_admin(). Original definition on 580.
/usr/share/selinux/devel/include/contrib/container.if:423: Error: duplicate definition of container_spc_read_state(). Original definition on 765.
/usr/share/selinux/devel/include/contrib/container.if:441: Error: duplicate definition of container_auth_domtrans(). Original definition on 627.
/usr/share/selinux/devel/include/contrib/container.if:460: Error: duplicate definition of container_auth_exec(). Original definition on 646.
/usr/share/selinux/devel/include/contrib/container.if:479: Error: duplicate definition of container_auth_stream_connect(). Original definition on 665.
/usr/share/selinux/devel/include/contrib/container.if:498: Error: duplicate definition of container_runtime_typebounds(). Original definition on 684.
container.if:14: Error: duplicate definition of container_runtime_domtrans(). Original definition on 14.
container.if:41: Error: duplicate definition of container_runtime_run(). Original definition on 41.
container.if:61: Error: duplicate definition of container_runtime_exec(). Original definition on 61.
container.if:80: Error: duplicate definition of container_read_state(). Original definition on 80.
container.if:98: Error: duplicate definition of container_search_lib(). Original definition on 98.
container.if:117: Error: duplicate definition of container_exec_lib(). Original definition on 117.
container.if:136: Error: duplicate definition of container_read_lib_files(). Original definition on 136.
container.if:155: Error: duplicate definition of container_read_share_files(). Original definition on 155.
container.if:176: Error: duplicate definition of container_runtime_read_tmpfs_files(). Original definition on 176.
container.if:197: Error: duplicate definition of container_manage_share_files(). Original definition on 197.
container.if:218: Error: duplicate definition of container_manage_share_dirs(). Original definition on 218.
container.if:238: Error: duplicate definition of container_exec_share_files(). Original definition on 238.
container.if:256: Error: duplicate definition of container_manage_config_files(). Original definition on 256.
container.if:275: Error: duplicate definition of container_manage_lib_files(). Original definition on 275.
container.if:295: Error: duplicate definition of container_manage_files(). Original definition on 295.
container.if:314: Error: duplicate definition of container_manage_dirs(). Original definition on 314.
container.if:332: Error: duplicate definition of container_manage_lib_dirs(). Original definition on 332.
container.if:368: Error: duplicate definition of container_lib_filetrans(). Original definition on 368.
container.if:386: Error: duplicate definition of container_read_pid_files(). Original definition on 386.
container.if:405: Error: duplicate definition of container_systemctl(). Original definition on 405.
container.if:430: Error: duplicate definition of container_rw_sem(). Original definition on 430.
container.if:449: Error: duplicate definition of container_append_file(). Original definition on 449.
container.if:467: Error: duplicate definition of container_use_ptys(). Original definition on 467.
container.if:485: Error: duplicate definition of container_filetrans_named_content(). Original definition on 485.
container.if:538: Error: duplicate definition of container_stream_connect(). Original definition on 538.
container.if:559: Error: duplicate definition of container_spc_stream_connect(). Original definition on 559.
container.if:580: Error: duplicate definition of container_admin(). Original definition on 580.
container.if:627: Error: duplicate definition of container_auth_domtrans(). Original definition on 627.
container.if:646: Error: duplicate definition of container_auth_exec(). Original definition on 646.
container.if:665: Error: duplicate definition of container_auth_stream_connect(). Original definition on 665.
container.if:684: Error: duplicate definition of container_runtime_typebounds(). Original definition on 684.
container.if:703: Error: duplicate definition of container_runtime_entrypoint(). Original definition on 703.
container.if:710: Error: duplicate definition of docker_exec_lib(). Original definition on 710.
container.if:714: Error: duplicate definition of docker_read_share_files(). Original definition on 714.
container.if:718: Error: duplicate definition of docker_exec_share_files(). Original definition on 718.
container.if:722: Error: duplicate definition of docker_manage_lib_files(). Original definition on 722.
container.if:727: Error: duplicate definition of docker_manage_lib_dirs(). Original definition on 727.
container.if:731: Error: duplicate definition of docker_lib_filetrans(). Original definition on 731.
container.if:735: Error: duplicate definition of docker_read_pid_files(). Original definition on 735.
container.if:739: Error: duplicate definition of docker_systemctl(). Original definition on 739.
container.if:743: Error: duplicate definition of docker_use_ptys(). Original definition on 743.
container.if:747: Error: duplicate definition of docker_stream_connect(). Original definition on 747.
container.if:751: Error: duplicate definition of docker_spc_stream_connect(). Original definition on 751.
container.if:765: Error: duplicate definition of container_spc_read_state(). Original definition on 765.
container.if:784: Error: duplicate definition of container_domain_template(). Original definition on 784.
container.if:812: Error: duplicate definition of container_spc_rw_pipes(). Original definition on 812.
Compiling targeted container module
/usr/bin/checkmodule:  loading policy configuration from tmp/container.tmp
container.te:486:ERROR 'syntax error' at token 'fs_manage_fusefs_named_sockets' on line 18289:
 	
fs_manage_fusefs_named_sockets(container_domain)
/usr/bin/checkmodule:  error(s) encountered while parsing configuration
make[1]: *** [tmp/container.mod] Error 1
make[1]: Leaving directory `/home/vagrant/container-selinux'
make: *** [container.pp] Error 2
[vagrant@localhost container-selinux]$

from container-selinux.

rhatdan commented on September 27, 2024

SELINUX Policy has changed massively since RHEL7/CENTOS7, You need to use the RHEL7.5 branch.

from container-selinux.

dweomer commented on September 27, 2024

@rhatdan as per #97 (comment), the RHEL7.5 branch errors.

from container-selinux.

rhatdan commented on September 27, 2024

What version so RHEL7 are you doing this on?

You could just comment out the
fs_manage_fusefs_named_sockets(container_domain)
line, and you should be fine.

from container-selinux.

make install-policy on centos7 about container-selinux HOT 4 CLOSED

Comments (4)

Related Issues (20)

Recommend Projects

React

Vue.js

Typescript

TensorFlow

Django

Laravel

D3

Recommend Topics

javascript

web

server

Machine learning

Visualization

Game

Recommend Org

Facebook

Microsoft

Google

Alibaba

D3

Tencent

Jobs