Bug 130992

Summary: Loads of udev related avc's
Product: [Fedora] Fedora Reporter: Leonard den Ottolander <leonard-rh-bugzilla>
Component: selinux-policy-strictAssignee: Daniel Walsh <dwalsh>
Status: CLOSED CURRENTRELEASE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 3   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-02-09 18:54:03 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 123268, 133652    
Attachments:
Description Flags
Startup avc denials (strict)
none
Full startup avc denied messages
none
Full system startup logs none

Description Leonard den Ottolander 2004-08-26 14:46:57 UTC 
selinux-policy-strict-1.17.2-1

I'm seeing loads of avc denieds in relation to udev. File system is
correctly (re)labeled. Attaching all errors at bootup (and root login).
Comment 1 Leonard den Ottolander 2004-08-26 14:52:04 UTC 
Created attachment 103120 [details]
Startup avc denials (strict)

Startup (and root login) avc denials. Mostly udev related. (Also xfs failure.)
Comment 2 Daniel Walsh 2004-08-30 19:31:01 UTC 
Most of these should be fixed in selinux-policy-strict-1.17.7-1
Comment 3 Leonard den Ottolander 2004-09-03 11:08:13 UTC 
With the upgrade to 1.17.8-2 these specific errors have disappeared.
Sadly they are replaced by other avc denies for the same programs.

I'll attach the full startup avc denied messages here. There's other
stuff there too...
Comment 4 Leonard den Ottolander 2004-09-03 11:11:06 UTC 
Created attachment 103427 [details]
Full startup avc denied messages
Comment 5 Leonard den Ottolander 2004-09-03 11:36:40 UTC 
Created attachment 103430 [details]
Full system startup logs

Probably easier to compare what goes wrong where when you can compare the full
system startup log.
Comment 6 Daniel Walsh 2004-09-13 15:07:51 UTC 
Lots of udev fixes have gone into policy.  We are not seeing udev AVC
messages form 1.17.12
Comment 7 Daniel Walsh 2005-02-09 18:54:03 UTC 
Fixed in current release