Bug 442886 - /dev/.udev* objects labeled with device_t type
Summary: /dev/.udev* objects labeled with device_t type
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: udev
Version: 5.2
Hardware: All
OS: Linux
low
low
Target Milestone: rc
: ---
Assignee: Harald Hoyer
QA Contact: Milan Zázrivec
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2008-04-17 12:24 UTC by Milan Zázrivec
Modified: 2008-05-21 15:59 UTC (History)
1 user (show)

Fixed In Version: RHBA-2008-0374
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2008-05-21 15:59:39 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)
verified fix (1.04 KB, patch)
2008-04-17 13:28 UTC, Harald Hoyer 		no flags Details | Diff
View All


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2008:0374 0 normal SHIPPED_LIVE udev bug fix update 2008-05-20 13:23:41 UTC

Description Milan Zázrivec 2008-04-17 12:24:05 UTC 
Description of problem:
Objects under /dev/.udev are labeled with wrong (device_t) type

Version-Release number of selected component (if applicable):
udev-095-14.15.el5

How reproducible:
Always

Steps to Reproduce:
1. Install some of the RHEL5.2 snapshots
2. After reboot:
# setfiles -vqn /etc/selinux/targeted/contexts/files/file_contexts /dev/.udev|\
  grep relabeling
  
Actual results:
# ls -Zd /dev/.udev
drwxr-xr-x  root root system_u:object_r:device_t       /dev/.udev

Expected results:
# ls -Zd /dev/.udev
drwxr-xr-x  root root system_u:object_r:udev_tbl_t     /dev/.udev
Comment 2 Harald Hoyer 2008-04-17 13:28:38 UTC 
Created attachment 302746 [details]
verified fix
Comment 3 Harald Hoyer 2008-04-18 06:36:24 UTC 
what puzzles me, is that not every entry in /dev/.udev has type udev_tbl_t.
Comment 4 Daniel Walsh 2008-04-21 17:31:16 UTC 
The current SELinux policy only matches on files, not directories, chr_files ...
Comment 8 Milan Zázrivec 2008-04-23 12:54:59 UTC 
Verified with udev-095-14.16.el5
Comment 10 errata-xmlrpc 2008-05-21 15:59:39 UTC 
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHBA-2008-0374.html
Note You need to log in before you can comment on or make changes to this bug.