Bug 292601
Summary: | (CRON) chdir(HOME) failed: (Permission denied) | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Paul Pluzhnikov <paul> |
Component: | selinux-policy | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | medium | ||
Version: | 8 | CC: | mwang |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Current | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2008-01-30 19:20:39 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Paul Pluzhnikov
2007-09-16 20:52:56 UTC
Fixed in selinux-policy-3.0.8-1.fc8 Apparently the exact same problem also affects sshd: $ ssh devel34 paul's password: Authentication successful. Last login: Mon Sep 17 07:18:04 2007 from buffalo.parasoft.com Could not chdir to home directory /home/camel1/paul: Permission denied -bash-3.2$ pwd / -bash-3.2$ cd -bash-3.2$ pwd /home/camel1/paul -bash-3.2$ Above, bash could chdir($HOME), but sshd can't (so bash starts in the wrong place). From audit.log: type=SYSCALL msg=audit(1190039032.385:68): arch=40000003 syscall=12 success=no exit=-13 a0=b9c137f0 a1=ffffff7c a2=b7ff7904 a3=b9c12f28 items=0 ppid=18353 pid=18354 auid=161 uid=161 gid=100 euid=161 suid=161 fsuid=161 egid=100 sgid=100 fsgid=100 tty=pts1 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 key=(null) This is not an AVC message, Do you have the use_nfs_home_dirs boolean turned on. setsebool -P use_nfs_home_dirs=1 (In reply to comment #3) > setsebool -P use_nfs_home_dirs=1 That cures it, thanks. The problem is not limited to nfs home dirs, but local file system other than root file system (/). For example, /boot/test where /boot is a separate file system. The problem occurs with ssh, and the mingetty. The problem can not be cured by setsebool -P use_nfs_home_dirs=1. The only cure I found is to disable selinux. What avc messages are you seeing when this happens? Bulk closing all bugs in Fedora updates in the modified state. If you bug is not fixed, please reopen. |