Bug 203940

Summary: Multiple same specifications for /dev/console
Product: [Fedora] Fedora Reporter: Jurgen Kramer <gtmkramer>
Component: selinux-policyAssignee: Daniel Walsh <dwalsh>
Status: CLOSED RAWHIDE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: rawhideCC: dwalsh
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-08-28 18:20:16 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Jurgen Kramer 2006-08-24 16:58:28 UTC 
Description of problem:
With selinux enabled system drops into maintenance mode asking for the root
password.

Version-Release number of selected component (if applicable):
rawhide 20060824

How reproducible:
always

Steps to Reproduce:
1. Boot with selinux enabled (default)
2.
3.
  
Actual results:
After tons of selinux avc: denied messages from (various critical components
including hwclock) the system drops to maintenance mode saying an error occurred
during the file system check and asks for the root password

Expected results:
Normal startup, no avc denied messages

Additional info:
filesystem is OK, booting with selinux=0 works
Comment 1 Jurgen Kramer 2006-08-24 17:10:02 UTC 
I am currently trying to fix the problem with a 'fixfiles relabel' while booted
with selinux=0. fixfiles shows:

/etc/selinux/targeted/contexts/files/file_contexts: Multiple same specications
for /dev/console.
Comment 2 Jurgen Kramer 2006-08-24 17:27:42 UTC 
Fffphew, fixfiles relabel fixed the problem. Now only some avc: denieds remain:

/etc/selinux/targeted/contexts/files/file_contexts: Multiple same specifications
for /dev/console. (message seen multiple times)

avc: denied { read } for pid=1643 comm="fsck.ext3" name="mtab" dev=dm-0
ino=1293435 scontext=system_u:system_r:fsadmin_t:s0
tcontext=system_u:object_r:file_t:s0 tclass=file

Modified bug summary and priority.
Comment 3 Daniel Walsh 2006-08-24 20:21:53 UTC 
Fixed in 2.3.9-2
Comment 4 Jurgen Kramer 2006-08-28 18:20:16 UTC 
Problem fixed :)