Hi,
When i build n900 image with this command : su -c 'qemu-system-arm -M
n900 -mtdblock
meego-handset-armv7l-n900-nokia-closed-1.0.80.8.20100630-1.0.80.20100706.1228-raw/meego-handset-armv7l-n900-nokia-closed-1.0.80.8.20100630-1.0.80.20100706.1228-sda.raw
-serial stdio -clock unix' . i got some SELinux warnning, but it not broken
the build process, on the other way, i got some info in build process.
mostly like
"Installing: opengles-sgx-img-common ##################### [ 45/382]
/usr/sbin/pvrsrvinit: line 48: modprobe: command not found"
i'm not sure is this whether or not break the build? Could someone
give me suggestion about this?
Following is SELinux problem output. and build log is attached.
Summary:
SELinux is preventing /usr/bin/qemu-arm-static "mmap_zero" access on
<Unknown>.
Detailed Description:
[SELinux is in permissive mode. This access was not denied.]
SELinux denied access requested by libgcc_post_upg. The current boolean
settings
do not allow this access. If you have not setup libgcc_post_upg to require
this
access this may signal an intrusion attempt. If you do intend this access
you
need to change the booleans on this system to allow the access.
Allowing Access:
Confined processes can be configured to run requiring different access,
SELinux
provides booleans to allow you to turn on/off access as needed. The boolean
mmap_low_allowed is set incorrectly.
Boolean Description:
Allow certain domains to map low memory in the kernel
Fix Command:
# setsebool -P mmap_low_allowed 1
Additional Information:
Source Context
unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1
023
Target Context
unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1
023
Target Objects None [ memprotect ]
Source libgcc_post_upg
Source Path /usr/bin/qemu-arm-static
Port <Unknown>
Host tom.localdomain
Source RPM Packages qemu-arm-static-0.12.3-10.1
Target RPM Packages
Policy RPM selinux-policy-3.7.19-28.fc13
Selinux Enabled True
Policy Type targeted
Enforcing Mode Permissive
Plugin Name catchall_boolean
Host Name tom.localdomain
Platform Linux tom.localdomain 2.6.33.5-124.fc13.i686
#1
SMP Fri Jun 11 09:48:40 UTC 2010 i686 i686
Alert Count 2
First Seen Tue 06 Jul 2010 12:36:05 PM EDT
Last Seen Wed 07 Jul 2010 12:55:06 PM EDT
Local ID bc6fce17-0da8-48c4-a184-dbf504d52147
Line Numbers
Raw Audit Messages
node=tom.localdomain type=AVC msg=audit(1278521706.103:17577): avc: denied
{ mmap_zero } for pid=5953 comm="libgcc_post_upg"
scontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
tcontext=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
tclass=memprotect
node=tom.localdomain type=SYSCALL msg=audit(1278521706.103:17577):
arch=40000003 syscall=192 success=yes exit=32768 a0=8000 a1=7c000 a2=5
a3=812 items=0 ppid=5842 pid=5953 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0
egid=0 sgid=0 fsgid=0 tty=pts0 ses=1 comm="libgcc_post_upg"
exe="/usr/bin/qemu-arm-static"
subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 key=(null)
Br
Tom Chen
build_log
Description: Binary data
_______________________________________________ MeeGo-dev mailing list [email protected] http://lists.meego.com/listinfo/meego-dev
