I run Fedora atomic 29. I made a mistake by removing one very important SELinux module: su.
I can no more su (I can sudo), which is very annoying. To get back the module, I need to reinstall the selinux-policy-targeted package.
------------------------------------------ % sudo setenforce 0 % sudo rpm-ostree uninstall selinux-policy-targeted error:package/capability 'selinux-policy-targeted' isnot currently requested % rpm -qa | grep selinux ..... 182:selinux-policy-targeted-3..... ------------------------- Following this[0] thread, I tried: ---------------------------- % sudo rpm-ostree override remove selinux-policy-targeted [sudo] password for gabx: Checking out tree cb40a05... done Resolving dependencies... done Applying 1 override and 79 overlays Processing packages... done Running pre scripts... done Running post scripts... done Writing rpmdb... done Writing OSTree commit... done error: With policy root '/proc/self/fd/25/usr/etc/selinux/targeted': selabel_open(SELABEL_CTX_FILE): No such file or directory -----------------------------------
How can I delete/install or reinstall it? Is there a way to get back the su module?
Thank you for help
On Fri, 30 Aug 2019 00:22:11 +0200 arnaud gaboury arnaud.gaboury@gmail.com wrote:
I run Fedora atomic 29. I made a mistake by removing one very important SELinux module: su.
I can no more su (I can sudo), which is very annoying. To get back the module, I need to reinstall the selinux-policy-targeted package.
[snip]
How can I delete/install or reinstall it? Is there a way to get back the su module?
I don't know rpm-ostree, but is there a reinistall command like dnf or an force install option like rpm? Or maybe a distrosync to bring the install into alignment with latest packages?
No idea why, but the su module is back. BUT, as written in my last post (a few mn ago), I can run sudo but not su. There is no reinstall on rpm-ostree. It is a more complexe method. Even removing is not trivial
--------------------------------------------------- # ls -alZ /usr/share/selinux/targeted/default/active/modules/100/su total 24K drwx------. 2 root root system_u:object_r:usr_t:s0 33 Jan 1 1970 ./ drwx------. 419 root root system_u:object_r:usr_t:s0 12K Jan 1 1970 ../ -rw-------. 3 root root system_u:object_r:usr_t:s0 1.9K Jan 1 1970 cil -rw-------. 835 root root system_u:object_r:usr_t:s0 3 Jan 1 1970 lang_ext ------------------------------------------------------------------------
On Fri, Aug 30, 2019 at 4:23 AM stan via users < users@lists.fedoraproject.org> wrote:
On Fri, 30 Aug 2019 00:22:11 +0200 arnaud gaboury arnaud.gaboury@gmail.com wrote:
I run Fedora atomic 29. I made a mistake by removing one very important SELinux module: su.
I can no more su (I can sudo), which is very annoying. To get back the module, I need to reinstall the selinux-policy-targeted package.
[snip]
How can I delete/install or reinstall it? Is there a way to get back the su module?
I don't know rpm-ostree, but is there a reinistall command like dnf or an force install option like rpm? Or maybe a distrosync to bring the install into alignment with latest packages? _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
-
arnaud gaboury -
stan