Red Hat Bugzilla – Bug 477892
SELinux denies 'read write' to restorecon on /root.
Last modified: 2009-01-09 15:09:37 EST
Description of problem:
Attempting to `restorecon -R -v /root` results in a SELinux denial. Summary "SELinux is preventing restorecon (setfiles_t) "read write" unconfined_t."
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Attempt `restorecon' on /root.
Received this error after attempting to fix plethora of AVC denials as KDE started up as root. Running restorecon only works on a few files before this AVC denial is thrown and restorecon fails with 'Operation not supported'.
I think restorecon is completing and most of these avc's can be ignored. kdebase is leaking file descriptors which SELinux is complaining about. This has been reported in several other kdebase bugs. The "Operation not supported" is caused by you trying to run restorecon on a file system that does not support extended attributes.
*** This bug has been marked as a duplicate of bug 477508 ***