Trouble with module
Joshua Brindle
jbrindle at tresys.com
Fri Oct 6 19:26:06 UTC 2006
On Fri, 2006-10-06 at 21:14 +0200, Pierre JUHEN wrote:
> I cleaned the /etc/selinux/targeted/modules/active/modules directory
>
> Transcript session under root directory
>
> root at pierre ~]# cat /var/log/audit/audit.log | audit2allow -M local
> Generating type enforcment file: local.te
> Compiling policy
> checkmodule -M -m -o local.mod local.te
> semodule_package -o local.pp -m local.mod
>
> ******************** IMPORTANT ***********************
>
> In order to load this newly created policy package into the kernel,
> you are required to execute
>
> semodule -i local.pp
>
>
> [root at pierre ~]# semodule -i local.pp
> semodule: Could not read file 'local.pp':
>
> ls -l local*
> -rw-r--r-- 1 root root 1961 oct 6 21:06 local.mod
> -rw-r--r-- 1 root root 1977 oct 6 21:06 local.pp
> -rw-r--r-- 1 root root 496 oct 6 21:06 local.te
>
> Local.pp is here, but semodule can not read it.
>
>
> What shoul I try now
you are probably getting a denial for semanage_t to read user_home_t.
Try copying local.pp to /usr/share/selinux/targeted and then running
semodule -i /usr/share/selinux/targeted/local.pp
More information about the selinux
mailing list