SELinux fails to apply local policy module
Suvayu Ali
fatkasuvayu+linux at gmail.com
Mon Apr 15 01:38:39 UTC 2013
Hi,
I use CrossOver (based on Wine) to run a Windows game. Everytime
CrossOver runs something, I get this avc denial.
SELinux is preventing wine-preloader from mmap_zero access on the
memprotect .
Raw Audit Messages from sealert:
type=AVC msg=audit(1365802456.473:13663): avc: denied { mmap_zero }
for pid=24734 comm="wine-preloader"
scontext=unconfined_u:unconfined_r:wine_t:s0-s0:c0.c1023
tcontext=unconfined_u:unconfined_r:wine_t:s0-s0:c0.c1023
tclass=memprotect
So I tried following the instructions to generate a local policy module:
# grep wine-preloader /var/log/audit/audit.log | audit2allow -M mypol
# semodule -i mypol.pp
But this fails like this:
libsepol.scope_copy_callback: passanger: Duplicate declaration in
module: type/attribute passenger_tmp_t (No such file or directory).
libsemanage.semanage_link_sandbox: Link packages failed (No such file
or directory). semodule: Failed!
So I have two questions,
1. is something missing in my system that the above fails?
2. is there a better way to resolve this other than generating a local
policy module?
Thanks in advance,
PS: I am almost clueless about SELinux, so please bear with me.
--
Suvayu
Open source is the future. It sets us free.
More information about the users
mailing list