Bug 203040
Summary: | semodule -i, -r and -b segafault | ||||||
---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Ben Marzinski <bmarzins> | ||||
Component: | policycoreutils | Assignee: | Daniel Walsh <dwalsh> | ||||
Status: | CLOSED RAWHIDE | QA Contact: | Ben Levenson <benl> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | medium | ||||||
Version: | 6 | CC: | dwalsh, pgraner | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | i386 | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2006-09-28 17:29:39 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Ben Marzinski
2006-08-17 22:12:35 UTC
Created attachment 134416 [details]
policy module package used in the example
Well, once I noticed that libselinux wasn't uptodate and updated it, the segfault went away. Instead, I get libsemanage.semanage_install_active: Non-fatal error: Could not copy /etc/selinux/targeted/modules/active/file_contexts.local to /etc/selinux/targeted/contexts/files/file_contexts.local This looks like a labeling problem. Could you attach the avc messages from /var/log/messages or /var/log/audit/audit.log restorecon -R -v /etc/selinux Will clear up labeling problems in policy. touch /.autorelabel; reboot will relabel the entire machine. relabeling the machine didn't change the message. here are the messages from /var/log/audit/audit.log type=MAC_POLICY_LOAD msg=audit(1155924789.856:46): policy loaded auid=0 type=SYSCALL msg=audit(1155924789.856:46): arch=40000003 syscall=4 success=yes exit=910553 a0=4 a1=b7ecf000 a2=de4d9 a3=bfce5258 items=0 pid=2369 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 comm="load_policy" exe="/usr/sbin/load_policy" subj=root:system_r:load_policy_t:s0-s0:c0.c255 type=AVC msg=audit(1155924790.460:47): avc: denied { read } for pid=2210 comm="hald-addon-stor" name="hdc" dev=tmpfs ino=3533 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=blk_file type=SYSCALL msg=audit(1155924790.460:47): arch=40000003 syscall=5 success=yes exit=4 a0=bfbf5e08 a1=8880 a2=0 a3=8880 items=1 pid=2210 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) comm="hald-addon-stor" exe="/usr/libexec/hald-addon-storage" subj=system_u:system_r:hald_t:s0 type=CWD msg=audit(1155924790.460:47): cwd="/usr/libexec" type=PATH msg=audit(1155924790.460:47): item=0 name="/dev/hdc" inode=3533 dev=00:10 mode=060660 ouid=0 ogid=6 rdev=16:00 obj=system_u:object_r:device_t:s0 type=AVC msg=audit(1155924790.464:48): avc: denied { ioctl } for pid=2210 comm="hald-addon-stor" name="hdc" dev=tmpfs ino=3533 scontext=system_u:system_r:hald_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=blk_file type=SYSCALL msg=audit(1155924790.464:48): arch=40000003 syscall=54 success=yes exit=1 a0=4 a1=5326 a2=7fffffff a3=4 items=0 pid=2210 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) comm="hald-addon-stor" exe="/usr/libexec/hald-addon-storage" subj=system_u:system_r:hald_t:s0 type=AVC_PATH msg=audit(1155924790.464:48): path="/dev/hdc" Please attach the local.te file that you used to create the pp file. libsemanage.semanage_install_active: Non-fatal error: Could not copy /etc/selinux/targeted/modules/active/file_contexts.local to /etc/selinux/targeted/contexts/files/file_contexts.local Has been fixed in a rawhide Not sure why you are getting a mislaneled /dev/hfc though. |