Bug 205660
Summary: | 82 AVC denials on first boot of a fresh install. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Dave Jones <davej> |
Component: | anaconda | Assignee: | Anaconda Maintenance Team <anaconda-maint-list> |
Status: | CLOSED RAWHIDE | QA Contact: | Mike McLean <mikem> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | rawhide | CC: | pfrields |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2006-09-08 15:11:44 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Dave Jones
2006-09-07 21:32:00 UTC
aparently the passwd file was mislabelled in the install tree I used. I've restorecon'd it. The only other one is .. audit(1157649408.793:76): avc: denied { read } for pid=983 comm="fsck.ext3" name="mtab" dev=dm-0 ino=426908 scontext=system_u:system_r:fsadm_t:s0 tcontext=system_u:object_r:file_t:s0 tclass=file This looks like a major problem in the installer. Basically the installer drops some files before policy is loaded so these files do not get labeled. The installer is then supposed to relabel them. If you see file_t that means the file has no label which should almost never happen. This should be fixed in today's tree. We made a variety of SELinux-related changes over the past couple days and only got it rebuilt last night. |