Bug 196474
| Summary: | xend fails to start : x86_64, avc denied errors | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Mark McLoughlin <markmc> |
| Component: | xen | Assignee: | James Antill <james.antill> |
| Status: | CLOSED DUPLICATE | QA Contact: | Brian Brock <bbrock> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | 6 | CC: | bstein, dwalsh, katzj, xen-maint, yunfeng.zhao |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2006-07-14 16:57:55 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
With FC6 test1, on x86_64, with selinux enabled, xend fails to start at boot. Seeing these selinux errors repeated every time xend start/status runs: --- avc: denied { read write } for pid=2668 comm="xend" name="0" dev=devpts ino=2 scontext=system_u:system_r:xend_t:s0 tcontext=system_u:object_r:initrc_devpts_t:s0 tclass=chr_file avc: denied { read write } for pid=2668 comm="xend" name="0" dev=devpts ino=2 scontext=system_u:system_r:xend_t:s0 tcontext=system_u:object_r:initrc_devpts_t:s0 tclass=chr_file avc: denied { read write } for pid=2668 comm="xend" name="0" dev=devpts ino=2 scontext=system_u:system_r:xend_t:s0 tcontext=system_u:object_r:initrc_devpts_t:s0 tclass=chr_file avc: denied { append } for pid=2668 comm="python" name="xend.log" dev=dm-0 ino=27690085 scontext=system_u:system_r:xend_t:s0 tcontext=root:object_r:var_log_t:s0 tclass=file avc: denied { search } for pid=2668 comm="python" name="tmp" dev=dm-0 ino=26705921 scontext=system_u:system_r:xend_t:s0 tcontext=system_u:object_r:tmp_t:s0 tclass=dir avc: denied { search } for pid=2668 comm="python" name="tmp" dev=dm-0 ino=27688964 scontext=system_u:system_r:xend_t:s0 tcontext=system_u:object_r:tmp_t:s0 tclass=dir avc: denied { read } for pid=2668 comm="python" name="tmp" dev=dm-0 ino=7635012 scontext=system_u:system_r:xend_t:s0 tcontext=system_u:object_r:usr_t:s0 tclass=lnk_file avc: denied { write } for pid=2668 comm="python" name="/" dev=dm-0 ino=2 scontext=system_u:system_r:xend_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=dir --- When trying to debug it by starting it manually (either with service xend start, /etc/rc.d/init.d/xend start or /usr/sbin/xend start) it eventually works after a while ... not sure what actually causes it to start working, though.