semanage ошибка доступа

# audit2allow -w -a
....................
type=AVC msg=audit(1728312483.041:49367916): avc:  denied  { write } for  pid=9799 comm="semanage" name="sepolicies.mods" dev="dm-0" ino=18874410 scontext=unconfined_u:unconfined_r:semanage_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_dir_t:s0 tclass=file permissive=0
        Was caused by:
                Missing type enforcement (TE) allow rule.

                You can use audit2allow to generate a loadable module to allow this access.

# audit2allow -a -M semanagewrite

# semodule -i semanagewrite.pp

# restorecon -R -v -F /root

# semanage export -f semanage.mods
Traceback (most recent call last):
  File "/usr/sbin/semanage", line 109, in __call__
    sys.stdout = open(values, 'w')
PermissionError: [Errno 13] Permission denied: 'semanage.mods'

# ls -Z / | grep root
            system_u:object_r:home_root_t:s0 home
             unconfined_u:object_r:root_t:s0 initrd.img
             unconfined_u:object_r:root_t:s0 initrd.img.old
    unconfined_u:object_r:user_home_dir_t:s0 root
             unconfined_u:object_r:root_t:s0 vmlinuz
             unconfined_u:object_r:root_t:s0 vmlinuz.old