Bug 429678
Summary: | SELinux is preventing /usr/sbin/semodule (semanage_t) "read write" to socket (unconfined_t) | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Valent Turkovic <valent.turkovic> |
Component: | LiveCD | Assignee: | Jeremy Katz <katzj> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | 10 | CC: | anton, brad.longo, dcantrell |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2009-07-21 18:31:04 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Valent Turkovic
2008-01-22 12:45:32 UTC
Creating livecd images with SELinux in enforcing mode, does not currently work. The problem is you have a shared kernel and the act of creating the CD will load a different policy then the machine you are creating it on. So currently when you create a livecd, you need to put the machine in permissive mode, And will need to reboot when the machine is finished if you want to put the machine back in enforcing mode. *** Bug 429682 has been marked as a duplicate of this bug. *** *** Bug 429684 has been marked as a duplicate of this bug. *** *** Bug 429685 has been marked as a duplicate of this bug. *** *** Bug 429686 has been marked as a duplicate of this bug. *** *** Bug 429687 has been marked as a duplicate of this bug. *** *** Bug 429677 has been marked as a duplicate of this bug. *** *** Bug 429683 has been marked as a duplicate of this bug. *** I'll try create a fake SELinux policy - just for creation process of the live CD. *** Bug 429676 has been marked as a duplicate of this bug. *** This is now working in Rawhide, and is back ported to Fedora 9. With livecd from git repository Policy works, we are waiting for livecd packaged in rawhide and f9. Also requires -26 kernel for fedora 9. livecd-tools for F9 has been pushed and rawhide is in git -- testers from git appreciated as more indicators to do a rawhide build. Worst case, I'll be doing one the end of next week for the alpha freeze I have the same issue. When this happened I got all the error output from livecd-creator and I also saved the error messages from selinux troubleshooter. Let me know if you want me to include the info. This is strange... the livecd works?! This bug appears to have been reported against 'rawhide' during the Fedora 10 development cycle. Changing version to '10'. More information and reason for this action is here: http://fedoraproject.org/wiki/BugZappers/HouseKeeping Closing out bug that's been in MODIFIED for a while. |