On Tue, Sep 21, 2021 at 10:12 AM Antoine Tenart wrote: > Quoting José Pekkarinen (2021-09-21 08:29:38) > > On Mon, Sep 20, 2021 at 4:52 PM Antoine Tenart <[1]atenart@kernel.org > > > > wrote: > > > > Reproducing locally the modules were correctly listed and enabled. > > However looking at the modules.conf generated on your machine, your > > modules' documentation is included but the modules aren't enabled > (as > > modules) by default. There might be some rules in the refpolicy > build > > system that can explain such a difference. > > > > I think the issue comes down to understanding how modules are > selected > > to be enabled by default (or not enabled), and why your modules are > > impacted. (Then there might be something to improve in Buildroot). > > > > Can this be that I'm working with an out of date version of buildroot? > > > > My project was started with 2021.02 and I observe the refpolicy dates > from > > August last year. I plan to start the works on fixing this, since it > > impacts any sort of upstreaming. > > You can try with a newer version of refpolicy, in case they did fix a > bug related to this; it's a good first test to make. But there are > chances this is due to how modules are selected by default, there might > be some extra logic we don't know about. > Hi, I tested today to build the system with buildroot 2021.05.2(without the patch) and it reproduces exactly the same behaviour, policy/modules.conf doesn't receive the line to activate the secure module, and if I search in policy.conf or policy.32 through sesearch I find no sign of the policies defined in the module. I'll attempt the upgrade to 2021.08, but that will require a bit more time. Best regards. José.