Subject: selinux-policy-default: confirming ram usage for semodule_deps Followup-For: Bug #495786 Package: selinux-policy-default Version: 2:0.0.20080702-10
*** Please type your report below this line ***
I have been noticing that I've been having problems installing
a system from a debian live system. I found that this was only
when I installed the standard task. I then poked around to figure
out what was going on, and I found that semodule_deps was using
a lot of memory. It uses enough memory to start the oom killer,
and this disrupts the whole system.
After reading through the bug report, I noticed that a new
package had been built. I decided to make a machine in virtualbox
to try it out. I made the machine with 64M of memory and decided
to not use any swap space. I installed the system with the netinst
iso for LennyBeta2 (I can't use the newer ones yet, as they freeze
in the VM when VT is enabled. There's a new virtualbox package, so
I'm going to install that pretty soon so I can use a more recent
netinst image). I installed just the base system with no tasks. I
then rebooted into the new machine and used aptitude to install the
standard packages.
aptitude --without-recommends install ~prequired ~pimportant
~pstandard
In doing this, the oom killer was invoked, and proceeded to kill
a couple of processes. I was running top, and I watched as
semodule_deps made it up to over 50M before processes started dying.
The information below is straight from the procedure I mentioned above.
It is a base system from the LennyBeta2 netinst after running the
aptitude command above, with the addition of an apt source that holds
the new selinux-policy-default package. If you need better info, just let
me know.
-- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.24-1-486
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=locale: Cannot set
LC_CTYPE to default locale: No such file or directory
locale: Cannot set LC_MESSAGES to default locale: No such file or directory
locale: Cannot set LC_ALL to default locale: No such file or directory
ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Versions of packages selinux-policy-default depends on:
ii libpam-modules 1.0.1-4 Pluggable Authentication Modules
f
ii libselinux1 2.0.65-5 SELinux shared libraries
ii libsepol1 2.0.30-2 Security Enhanced Linux policy
lib
ii policycoreutils 2.0.49-6 SELinux core policy utilities
ii python 2.5.2-2 An interactive high-level
object-o
Versions of packages selinux-policy-default recommends:
pn checkpolicy <none> (no description available)
pn setools <none> (no description available)
Versions of packages selinux-policy-default suggests:
pn logcheck <none> (no description available)
pn syslog-summary <none> (no description available)
-- debconf information:
perl: warning: Setting locale failed.
perl: warning: Please check that your locale settings:
LANGUAGE = (unset),
LC_ALL = (unset),
LANG = "en_US.UTF-8"
are supported and installed on your system.
perl: warning: Falling back to the standard locale ("C").
locale: Cannot set LC_CTYPE to default locale: No such file or directory
locale: Cannot set LC_MESSAGES to default locale: No such file or directory
locale: Cannot set LC_ALL to default locale: No such file or directory
--
Thanks:
Joseph Rawson
signature.asc
Description: This is a digitally signed message part.
