Wind River Support Network

HomeDefectsLIN1021-3398
Fixed

LIN1021-3398 : semanage fails to run: name 'audit' is not defined

Created: Apr 20, 2022    Updated: Jun 9, 2022
Resolved Date: Jun 8, 2022
Found In Version: 10.21.20.7
Fix Version: 10.21.20.13
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

On WRLinux CGL image:
root@qemux86-64:~# mkdir /web
root@qemux86-64:~# touch /web/foo
root@qemux86-64:~# newrole -r secadm_r
root@qemux86-64:~# semanage fcontext -a -t user_home_t "/web(/.*)?"
Traceback (most recent call last):
File "/usr/sbin/semanage", line 975, in <module>
do_parser()
File "/usr/sbin/semanage", line 947, in do_parser
args.func(args)
File "/usr/sbin/semanage", line 329, in handleFcontext
OBJECT.add(args.file_spec, args.type, args.ftype, args.range, args.seuser)
File "/usr/lib64/python3.9/site-packages/seobject.py", line 2485, in add
self.__add(target, type, ftype, serange, seuser)
File "/usr/lib64/python3.9/site-packages/seobject.py", line 2481, in __add
self.mylog.log_change("resrc=fcontext op=add %s ftype=%s tcontext=%s:%s:%s:%s" % (audit.audit_encode_nv_string("tglob", target, 0), ftype_to_audit[ftype], seuser, "object_r", type, sera)
NameError: name 'audit' is not defined

Steps to Reproduce

1.  create a wrlinux qemu x86-64 CGL project which includes SELinux by default.
2. run these command in the QEMU target:
root@qemux86-64:~# mkdir /web
root@qemux86-64:~# touch /web/foo
root@qemux86-64:~# ls -Zd /web
root:object_r:root_t:SystemLow /web
root@qemux86-64:~# newrole -r secadm_r
root@qemux86-64:~# semanage fcontext -a -t user_home_t "/web(/.*)?"
Traceback (most recent call last):
  File "/usr/sbin/semanage", line 975, in <module>
    do_parser()
  File "/usr/sbin/semanage", line 947, in do_parser
    args.func(args)
  File "/usr/sbin/semanage", line 329, in handleFcontext
    OBJECT.add(args.file_spec, args.type, args.ftype, args.range, args.seuser)
  File "/usr/lib64/python3.9/site-packages/seobject.py", line 2485, in add
    self.__add(target, type, ftype, serange, seuser)
  File "/usr/lib64/python3.9/site-packages/seobject.py", line 2481, in __add
    self.mylog.log_change("resrc=fcontext op=add %s ftype=%s tcontext=%s:%s:%s:%s" % (audit.audit_encode_nv_string("tglob", target, 0), ftype_to_audit[ftype], seuser, "object_r", type, sera)
NameError: name 'audit' is not defined
Live chat
Online