Bug 564456
Summary: | SELinux is preventing /usr/bin/Xorg "read write" access to device /dev/nvidiactl. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | giorgos <giorgosfm> |
Component: | selinux-policy | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED CANTFIX | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | low | ||
Version: | 12 | CC: | dwalsh, mgrepl |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | setroubleshoot_trace_hash:c39c73e54990d2044de043234314a5086a42b55bb380316fd7bc6c39619a7f85 | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2010-02-13 13:02:38 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
giorgos
2010-02-12 19:51:24 UTC
For some reason this device got created with the wrong label. restorecon /dev/nvidiactl Will fix. Probably something broken in nvidea module that creates the device rather then having udev create the device. matchpathcon /dev/nvidiactl /dev/nvidiactl system_u:object_r:xserver_misc_device_t:s0 If you figure out where this device is created you can add restorcon /dev/nvidiactl right after it gets created, Or you can add a local policy modification to allow the access # grep xserver_t /var/log/audit/audit.log | audit2allow -M nvidiaisbroken # semodule -i nvidiaisbroken.pp |