You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I have followed the guide to confirm if there is a problem with it.
I'm using a CentOS 10 Stram Docker image.
The compilation step gives the same error
[root@4e242917b7a5 selinux-wazuh]# make -f /usr/share/selinux/devel/Makefile
Compiling targeted wazuhT module
wazuhT.te:57:ERROR 'Class process would have too many permissions to fit in an access vector with permission read' at token '}' on line 3452:
class process { transition getattr getpgid getsession setrlimit setsched signull open read};
role unconfined_r;
/usr/bin/checkmodule: error(s) encountered while parsing configuration
make: *** [/usr/share/selinux/devel/include/Makefile:157: tmp/wazuhT.mod] Error 1
[root@4e242917b7a5 selinux-wazuh]# semodule -i wazuhT.pp
Failed to resolve permission open
Failed to resolve allow statement at /var/lib/selinux/targeted/tmp/modules/400/wazuhT/cil:177
Failed to resolve AST
semodule: Failed!
Removing all references to open gives a similar error with read
[root@4e242917b7a5 selinux-wazuh]# semodule -i wazuhT.pp
Failed to resolve permission read
Failed to resolve allow statement at /var/lib/selinux/targeted/tmp/modules/400/wazuhT/cil:202
Failed to resolve AST
semodule: Failed!
Removing all references to read and the resulting empty lines, results in a successful compilation and installation
Description
There is SELinux section that covers the creation of a policy
https://documentation.wazuh.com/current/development/selinux-wazuh-context.html
Nevertheless, it was reported that it isn't working
It is required to update this section.
How to reproduce
I have followed the guide to confirm if there is a problem with it.
I'm using a CentOS 10 Stram Docker image.
The compilation step gives the same error
The policy was added two years ago
If I remove the
read
permission from the mentioned lineI can compile the policy
But I can't install it
Removing all references to
open
gives a similar error withread
Removing all references to
read
and the resulting empty lines, results in a successful compilation and installationThis is a workaround, it should be tested in depth
wazuhT.te
DoD
The text was updated successfully, but these errors were encountered: