Bug 198068
Summary: | SELinux outdated - prevents system from starting | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Darwin H. Webb <thethirddoorontheleft> | ||||||
Component: | selinux-policy-targeted | Assignee: | Daniel Walsh <dwalsh> | ||||||
Status: | CLOSED DUPLICATE | QA Contact: | |||||||
Severity: | medium | Docs Contact: | |||||||
Priority: | medium | ||||||||
Version: | 6 | ||||||||
Target Milestone: | --- | ||||||||
Target Release: | --- | ||||||||
Hardware: | All | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2006-07-11 14:10:42 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Attachments: |
|
Description
Darwin H. Webb
2006-07-09 01:30:44 UTC
Created attachment 132118 [details]
dmesg for last boot plus last 30 messages
Created attachment 132192 [details]
dmesg after SELinux update July 10th
After SELinux-polcy update of July 10th, set to enforcing, and relable on
reboot, most avc messages removed but Desktop still failed.
1. At logon popup for default session still there.
2. Nautius splash screen hangs, click on it, Desktop goes back to Logon screen.
3. Set to permissive and reboot.
4. Desktop come up.
The dmesg shows 2 avc messages - 1 for reconstore and 1 for meticty (execmem).
Since execmem is a global setting, it must be a bug in meticity.
I will file a bug on meticity and ref to this one.
restorecond should not be a problem and will be fixed shortly. Your remaining problem is metacity which is reported in #197910 So closing this as a duplicate of that bug. You can turn on the allow_execmem boolean to allow you to run with SELinux in enforcing mode setsebool -P allow_execmem=1 *** This bug has been marked as a duplicate of 197910 *** |