Bug 216819 - ntfs-3g won't mount filesystem during startup
ntfs-3g won't mount filesystem during startup
Product: Fedora
Classification: Fedora
Component: ntfs-3g (Show other bugs)
noarch Linux
medium Severity medium
: ---
: ---
Assigned To: Tom "spot" Callaway
Fedora Extras Quality Assurance
Depends On:
  Show dependency treegraph
Reported: 2006-11-21 23:34 EST by Larry Johnson
Modified: 2009-06-27 11:45 EDT (History)
3 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2007-06-27 19:07:14 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
"audit2allow -M local" input file (977 bytes, text/plain)
2006-11-21 23:34 EST, Larry Johnson
no flags Details

  None (edit)
Description Larry Johnson 2006-11-21 23:34:46 EST
Description of problem:
After installation of ntfs-3g and adding drives to the /etc/fstab, ntfs-3g
allows me to mount my drive from the commandline by issuing the 'mount' command.
 However, during system startup, the mount reports SELinux audit failures during
startup.  If the ntfs-3g filesystem is mounted ruing shutdown, SELinux audit
errors are also reported there.

I was able to build an audit policy file that I used as the input to audit2allow
that resolved these issues.  If these look reasonable, it would be nice if the
install script for the RPM would automatically compile and install these
policies.  I have attached the file for your review.

Version-Release number of selected component (if applicable):
  Fedora:  Core 6

How reproducible:

Steps to Reproduce:
  1) Install the ntfs-3g package
  2) Edit /etc/fstab to include an NTFS mount
  3) Reboot system
Actual results:
  System startup does not mount NTFS drives and shutdown reports errors
  during NTFS drive 'umount'.

Expected results:
  NTFS drive should mount and unmount without errors during startup and

Additional info:
  I have attached the audit policy file that I used with 'audit2allow'
Comment 1 Larry Johnson 2006-11-21 23:34:46 EST
Created attachment 141868 [details]
"audit2allow -M local" input file
Comment 2 Szabolcs Szakacsits 2007-01-07 07:29:01 EST
This should be fixed for RHEL5 and FC6 by selinux-policy-2.4.6-23. Could you
please confirm? Thank you.
Comment 3 Torsten Rausche 2007-01-08 07:00:24 EST
No change with selinux-policy-2.4.6-23.fc6 so far.
Comment 4 Larry Johnson 2007-03-28 18:39:34 EDT
I am now running the following configuration:
  kernel:    2.6.20-1.2933.fc6
  fuse:      2.6.3-2.fc6
  fuse-libs: 2.6.3-2.fc6
  ntfs-3g:   2:1.0-1.fc6

I am now receiving errors on startup shutdown when a windows NTFS partition is
auto mounted from /etc/fstab.  All errors seem to be audit errors with SELinux
for both fuse and ntfsl-3g.
Comment 5 Torsten Rausche 2007-04-04 06:51:25 EDT
selinux-policy-2.4.6-49.fc6 seems to fix it.
Comment 6 Larry Johnson 2007-04-06 22:39:40 EDT
Still seems to be a problem even with selinux-policy-2.4.6-49-fc6 installed. 
Here are the errors that I am receiving:

Apr  4 21:43:56 holmes kernel: audit(1175741024.399:4): avc:  denied  { getattr 
} for  pid=2041 comm="mount.ntfs-3g" name="modprobe" dev=sda7 ino=39960724
scontext=system_u:system_r:mount_t:s0 context=system_u:object_r:insmod_exec_t:s0
Apr  4 21:43:56 holmes kernel: audit(1175741024.399:5): avc:  denied  { execute 
} for  pid=2043 comm="mount.ntfs-3g" name="bash" dev=sda7 ino=10076172
scontext=system_u:system_r:mount_t:s0 context=system_u:object_r:shell_exec_t:s0
Apr  4 21:43:56 holmes kernel: fuse init (API version 7.8)
Apr  4 21:43:56 holmes kernel: SELinux: initialized (dev sda2, type fuseblk),
not configured for labeling
Apr  4 21:43:56 holmes kernel: audit(1175741025.619:6): avc:  denied  { mount } 
for  pid=2044 comm="fusermount" name="/" dev=sda2 ino=1
scontext=system_u:system_r:mount_t:s0 tcontext=system_u:object_r:unlabeled_t:s0
Comment 7 Larry Johnson 2007-04-06 22:59:25 EDT
Sorry, misspoke. :(

I was running selinux-policy-2.4.6-46-fc6 instead of
selinux-policy-2.4.6-49-fc6.  Once I installed 49, it appears to mount on
startup and unmount on shutdown.

Thanks for the work.
Comment 8 Torsten Rausche 2007-04-18 07:19:45 EDT
So could anyone please close this bug report?

Note You need to log in before you can comment on or make changes to this bug.