RE: A question about selinux userspace tools

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi Remmolt,

Many thanks for your reply!

I guess you may think I am running Ubuntu 8.10 by vmware on top of Windows OS, but this is not the case, I have booted into Ubuntu directly without any virtualization tool, there is no PAGEFILE.SYS nor INDEXF.SYS on linux, they seem to be very Windows-like.

Yeah, I know I could install a bootable selinux kit simply by "sudo apt-get install selinux" and everything will be installed and set up correctly, however, I would like to follow all the necessary steps by hand to get a better understanding of how to deploy selinux on Ubuntu, so I started from scratch by installing the latest selinux userspace tools and loading refpolicy package.

I just wondering why the latest stable libsemanage may cause this "libsepol.sepol_module_package_read: out of memory" problem but the version of 2.0.27 won't! .

Best regards,

Harry


From: remmolt@xxxxxxxxxxxxxxx
To: harrytaurus2002@xxxxxxxxxxx
CC: selinux@xxxxxxxxxxxxx
Subject: RE: A question about selinux userspace tools
Date: Tue, 4 Aug 2009 10:38:46 +0200

Hello Harry,

 

You are getting a traceback error because your build is trying to reference RAM memory on your laptop that either does not exist or is addressed thru a virtualization tool ( like say Vmware, Softtricity or CITRIX)

Further, your PAGEFILE.SYS may be too small. Mind you the referencing of the INDEXF.SYS (HD memory) from ‘userspace’ is handled thru a windows i/o handler.

 

What you could try (you seem to be young and have plenty of time) is create a bootable Selinux kit and before you reboot your laptop change the boot sequence in the BIOS (Basic Input Output System) to the device on your laptop you stored the kit on.

We did this successfully on Knoppix (cr Klaus Knoppers).

 

Viel spass,

 

~remmolt     

 

www.bundesnachrichtendienst.de

 

From: owner-selinux@xxxxxxxxxxxxx [mailto:owner-selinux@xxxxxxxxxxxxx] On Behalf Of TaurusHarry
Sent: dinsdag 4 augustus 2009 5:11
To: selinux-mailing-list
Subject: A question about selinux userspace tools

 

Hi all,

I am a newcomer to SELinux and have a question about the latest SELinux userspace tools.

Before I try to install the latest refpolicy-20090730 from tresys website on Ubuntu 8.10 on Dell 6101 laptop(x86_32), I have installed the below latest SELinux userspace tools on the laptop:

libsepol-2.0.37
libselinux-2.0.85
libsemanage-2.0.33
policycoreutils-2.0.69
checkpolicy-2.0.19
sepolgen-1.0.17

If I specify MONOLITHIC=n in build.conf and compile refpolicy-20090730 by the latest SELinux userspace tools and then do "make load", I would run into following error message in the end:

libsepol.sepol_module_package_read: out of memory
libsemanage.semanage_load_module: Error while reading from module file /etc/selinux/refpolicy-20090730/modules/tmp/base.pp.
/usr/sbin/semodule:  Failed!
make: *** [load] Error 1

The same error would crop up when I try out following second-to-the-latest SELinux userspace tools(also ! from tresys website):

libsepol-2.0.36
libselinux-2.0.79
libsemanage-2.0.31
policycoreutils-2.0.62
checkpolicy-2.0.19
sepolgen-1.0.16

Only if I degrade libsemanage from 2.0.31 to 2.0.27, and policycoreutils from 2.0.62 to 2.0.55, would the "make load" finish uneventfully, then I could do "semanage login/user -l" and "semodule -l" successfully.

So far I have very shallow experience on SELinux userspace tools implementation and couldn't find out the reason  why the latest stable version would have above error message on my laptop, has anyone run into the same problem before? Any suggestions are greatly appreciated!

Thanks!

Harry

聊天+搜索+邮箱 想要轻松出游,手机MSN帮你搞定! 立刻下载!


您可以借助 Windows Live 整理、编辑和 共享您的照片。
[Index of Archives]     [Selinux Refpolicy]     [Linux SGX]     [Fedora Users]     [Fedora Desktop]     [Yosemite Photos]     [Yosemite Camping]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux