Description of problem: audit2allow is missing from policycoreutils-python-2.1.13-34 sealert is having problems running: /bin/sh: audit2allow: command not found -R: audit2allow: command not found
# yum install policycoreutils-devel will fix it for now.
setroubleshoot-3.1.19-1.fc18 makes this optional.
Also, when you click troubleshooting, the instructions tell you to run audit2allow, and it is not installed by default and it's very dificult to find which package has audit2allow. So you go to troubleshooting and you have problems with the trobleshouting also, it is very anoying and IMHO it have not to happens. I think the best solution will be to install by default the package policycoreutils-devel
yum install /usr/bin/audit2allow Should have installed the correct package. I will add this as default to setroubleshoot requires. But we still do not have it on the server only install. The problem is audit2allow brings in lots of requirements for selinux-policy-devel package, which is rather large, and we are trying to minimize the minimal install. Fixed in setroubleshoot-3.1.19
setroubleshoot-3.1.19-2.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/setroubleshoot-3.1.19-2.fc18
Package setroubleshoot-3.1.19-2.fc18: * should fix your issue, * was pushed to the Fedora 18 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing setroubleshoot-3.1.19-2.fc18' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2012-19841/setroubleshoot-3.1.19-2.fc18 then log in and leave karma (feedback).
(In reply to comment #6) > Package setroubleshoot-3.1.19-2.fc18: > * should fix your issue, > Does not look like it is working: # yum install setroubleshoot Loaded plugins: langpacks, presto, refresh-packagekit Resolving Dependencies --> Running transaction check ---> Package setroubleshoot.i686 0:3.1.19-2.fc18 will be installed --> Finished Dependency Resolution Dependencies Resolved ============================================================================== Package Arch Version Repository Size ============================================================================== Installing: setroubleshoot i686 3.1.19-2.fc18 updates-testing 120 k Transaction Summary ============================================================================== Install 1 Package Total download size: 120 k Installed size: 227 k Is this ok [y/N]: y Downloading Packages: setroubleshoot-3.1.19-2.fc18.i686.rpm | 120 kB 00:02 Running Transaction Check Running Transaction Test Transaction Test Succeeded Running Transaction Installing : setroubleshoot-3.1.19-2.fc18.i686 1/1 Verifying : setroubleshoot-3.1.19-2.fc18.i686 1/1 Installed: setroubleshoot.i686 0:3.1.19-2.fc18 Complete! # audit2allow bash: audit2allow: command not found...
Shoot, I guess not. I will fix in the next version. setroubleshoot-3.1.19-3.fc18.i686
Please try the new version, hopefully I will not have my head up my butt this time.
Package setroubleshoot-3.1.19-3.fc18: * should fix your issue, * was pushed to the Fedora 18 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing setroubleshoot-3.1.19-3.fc18' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2012-19841/setroubleshoot-3.1.19-3.fc18 then log in and leave karma (feedback).
setroubleshoot-3.1.19-3.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.
This problem is reoccuring with setroubleshoot-3.2.10-1.fc19.x86_64 -- it no longer pulls in policycoreutils-devel but troubleshooting instructions refer to audit2allow. Should I reopen this or do you prefer a separate bug report?
Just now I installed Fedora 19 got the same error. grep chrome /var/log/audit/audit.log | audit2allow -M mypol bash: audit2allow: command not found... Linux localhost.localdomain 3.9.5-301.fc19.x86_64 #1 SMP Tue Jun 11 19:39:38 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
I also experience this with Fedora 19.
(sorry sent too early): setroubleshoot package details: setroubleshoot-3.2.10-1.fc19.i686 uname -a: Linux cordis 3.10.4-300.fc19.i686 #1 SMP Tue Jul 30 12:03:53 UTC 2013 i686 i686 i386 GNU/Linux
I also have this bug. # grep plugin-containe /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp command not found in fedora 19. Also is there way to only allow plugin-container on a specific file only? Thank you. Rich.
I just wanted to add a comment to anyone still experiencing this. As Michel alludes to in comment 12, setroubleshoot no longer includes policycoreutils-devel (required for audit2allow). If you want to use audit2allow you will need to install policycoreutils-devel explicitly: > yum install policycoreutils-devel -y By the way, this works for me as of Fedora 19. I hope this helps anyone encountering this issue in the future.
rpm -qf /usr/bin/audit2allow policycoreutils-python-2.1.14-81.fc20.x86_64 Well we moved audit2allow into the -python package.