Bug 119763

Summary: mount points disappear for user
Product: [Fedora] Fedora Reporter: Scott Sloan <devscott>
Component: policyAssignee: Daniel Walsh <dwalsh>
Status: CLOSED NOTABUG QA Contact: Ben Levenson <benl>
Severity: high Docs Contact:
Priority: high    
Version: rawhide   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2004-04-03 04:17:46 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Scott Sloan 2004-04-02 01:02:04 UTC 
Description of problem

harddrive1 = /dev/hda  (has swap / and /boot partitions)
harddrive2 = /dev/hdb  (has /stor  partition for mass storage  owner
set to 501)

user 501 doesn't have access to the drive, nor does it appear under
nautilus for the user even though he is the user. first saw this bug
and reported it as 

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=119517

which has a screenshot of it occuring under mozilla. 

Didn't know where to post it, thinking it is selinux related
Comment 1 Scott Sloan 2004-04-02 01:36:32 UTC 
logs show this

Apr  1 18:39:13 localhost kernel: audit(1080866353.616:0): avc: 
denied  { getattr } for  pid=3213 exe=/usr/bin/nautilus path=/stor
dev=hdb1 ino=2 scontext=user_u:user_r:user_t
tcontext=system_u:object_r:file_t tclass=dir
Apr  1 18:39:13 localhost kernel: audit(1080866353.754:0): avc: 
denied  { getattr } for  pid=3176 exe=/usr/bin/nautilus path=/stor
dev=hdb1 ino=2 scontext=user_u:user_r:user_t
tcontext=system_u:object_r:file_t tclass=dir
Apr  1 18:39:13 localhost kernel: audit(1080866353.912:0): avc: 
denied  { getattr } for  pid=3176 exe=/usr/bin/nautilus path=/stor
dev=hdb1 ino=2 scontext=user_u:user_r:user_t
tcontext=system_u:object_r:file_t tclass=dir
Comment 2 Scott Sloan 2004-04-02 16:38:28 UTC 
With Setting: 

/etc/sysconfig/selinux

selinux=disabled

I can properly access the directories, so this is a direct symptom of
selinux. 

To me it seems that selinux is ignoring the file owner and properties
and over-riding them by whatever is listed in a policy somewhere. I
don't think this should be. Shouldn't file rights over ride policy?
Comment 3 Daniel Walsh 2004-04-03 04:17:46 UTC 
What kind of file systems is mounted on /stor.  

SELinux overrides DAC or file owner/properties.  The problem here is
this is a mislabled file system.  If you want a user to be able to
access the file system, you could mount it with 
context=system_u:object_r:user_home_t
Comment 4 Bill Nottingham 2004-04-05 22:00:35 UTC 
*** Bug 119762 has been marked as a duplicate of this bug. ***