Description of problem: Selinux prevents prelinks from working correctly. dmesg | audit2allow prints this: allow prelink_t lib_t:file execute_no_trans; Can this be added to the policy to fix it? When prelink runs I get tons of such avcs audit(1148111149.044:3298): avc: denied { execute_no_trans } for pid=7141 comm="prelink" name="ld-2.4.so" dev=md0 ino=8061236 scontext=system_u:system_r:prelink_t:s0 tcontext=system_u:object_r:lib_t:s0 tclass=file Version-Release number of selected component (if applicable): selinux-policy-targeted-2.2.38-1.fc5 How reproducible: always Steps to Reproduce: 1. wait until prelinks starts 2. look at dmesg 3. notice the erros Actual results: avcs Expected results: no avcs Additional info: I already posted it to the selinux-list but it seems to get ignored so I hope I will get more feedback here.
Fixed in selinux-policy-targeted-2.2.42-2.fc5 chcon -t ld_so_t /lib64/ld-2.4.so Should fix it also.