SELinux is preventing /usr/bin/MP4Box from loading /usr/lib/libgpac.so.0.4.6-DEV which requires text relocation. MP4Box is from gpac-0.4.6-0.4.cvs20090919.fc12 Hash String generated from allow_execmod,MP4Box,unconfined_t,lib_t,file,execmod audit2allow suggests:
Execute: chcon -t textrel_shlib_t '/usr/lib/libgpac.so.0.4.6-DEV' Fixed in selinux-policy-3.6.32-108.fc12
selinux-policy-3.6.32-108.fc12 has been submitted as an update for Fedora 12. http://admin.fedoraproject.org/updates/selinux-policy-3.6.32-108.fc12
selinux-policy-3.6.32-108.fc12 has been pushed to the Fedora 12 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update selinux-policy'. You can provide feedback for this update here: http://admin.fedoraproject.org/updates/selinux-policy-3.6.32-108.fc12
selinux-policy-3.6.32-108.fc12 has been pushed to the Fedora 12 stable repository. If problems still persist, please make note of it in this bug report.
(In reply to comment #4) > selinux-policy-3.6.32-108.fc12 has been pushed to the Fedora 12 stable > repository. If problems still persist, please make note of it in this bug > report. Still in selinux-policy-3.6.32-108.fc12 using gpac-0.4.6-0.4.cvs20090919.fc12.i686 I get similar error: MP4Box: error while loading shared libraries: /usr/lib/libgpac.so.0: cannot restore segment prot after reloc: Permission denied. Using: chcon -t textrel_shlib_t '/usr/lib/libgpac.so.0.4.6-DEV' solves the problem for now.
# matchpathcon /usr/lib/libgpac.so.0.4.6-DEV /usr/lib/libgpac.so.0.4.6-DEV system_u:object_r:textrel_shlib_t:s0 What is your output?
MP4Box: error while loading shared libraries: /usr/lib/libgpac.so.0: cannot restore segment prot after reloc: Permission denied. is the only output I get on the command line after issuing the command, $ MP4Box -new <filename>.mp4 -fps <number> -add <filename>.avi -add <filename>.aac I didn't have this problem in Ferora 10.
Sorry for the delay, this should help. Summary: SELinux is preventing /usr/bin/MP4Box "execmod" access to /usr/lib/libgpac.so.0.4.6-DEV. Detailed Description: SELinux denied access requested by MP4Box. /usr/lib/libgpac.so.0.4.6-DEV may be a mislabeled. /usr/lib/libgpac.so.0.4.6-DEV default SELinux type is textrel_shlib_t, but its current type is lib_t. Changing this file back to the default type, may fix your problem. Additional Information: Source Context unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1 023 Target Context system_u:object_r:lib_t:s0 Target Objects /usr/lib/libgpac.so.0.4.6-DEV [ file ] Source MP4Box Source Path /usr/bin/MP4Box ............. Source RPM Packages gpac-0.4.6-0.4.cvs20090919.fc12 Target RPM Packages gpac-libs-0.4.6-0.4.cvs20090919.fc12 Policy RPM selinux-policy-3.6.32-108.fc12 Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Plugin Name restorecon ............. Platform Linux <hostname> 2.6.32.11-99.fc12.i686 #1 SMP Mon Apr 5 16:32:08 EDT 2010 i686 i686
execute: # restorecon -Rv /usr/lib/libgpac.so.0.4.6-DEV