[DSE-Dev] Bug#913987: policycoreutils-python-utils: audit2allow -R cant open "interface info"

Jade McCormick jade at cerberus.heptet.us
Sun Nov 18 01:00:30 GMT 2018

Package: policycoreutils-python-utils
Version: 2.8-2
Severity: normal

Dear Maintainer,

audit2allow -R is supposed to generate allow rules that incorporate M4
interface macros from the reference policy. However, this does not appear to work
on debian. When I run audit2allow -b -R, for instance:

could not open interface info [/var/lib/sepolgen/interface_info]

I had to run "sepolgen-ifgen" in order for this command to work.

Is it possible to ship this file in the package, or to run this command upon
package installation?

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.18.0-2-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: SELinux: enabled - Mode: Enforcing - Policy name: default

Versions of packages policycoreutils-python-utils depends on:
ii  policycoreutils   2.8-1
ii  python3           3.6.7-1
ii  python3-audit     1:2.8.4-2
ii  python3-ipy       1:0.83-1
ii  python3-selinux   2.8-1+b1
ii  python3-semanage  2.8-1+b1
ii  python3-sepolgen  2.8-2
ii  python3-sepolicy  2.8-2
ii  selinux-utils     2.8-1+b1

policycoreutils-python-utils recommends no packages.

policycoreutils-python-utils suggests no packages.

-- no debconf information

More information about the SELinux-devel mailing list