672882 – avc: denied { create } for comm="systemd-readahe" name="readahead"

Bug 672882 - avc: denied { create } for comm="systemd-readahe" name="readahead"

Summary: avc: denied { create } for comm="systemd-readahe" name="readahead"

Keywords:
Status:	CLOSED RAWHIDE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	systemd
Sub Component:
Version:	rawhide
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Lennart Poettering
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2011-01-26 16:38 UTC by John Reiser
Modified:	2011-01-27 11:04 UTC (History)
CC List:	6 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2011-01-27 11:04:59 UTC
Type:	---
Dependent Products:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description John Reiser 2011-01-26 16:38:24 UTC

Description of problem: selinux targeted policy complains about systemd-readhead process creating 'readahead' file.


Version-Release number of selected component (if applicable):
systemd-17-1.fc15.x86_64
systemd-units-17-1.fc15.x86_64
selinux-policy-targeted-3.9.13-5.fc15.noarch


How reproducible: every time


Steps to Reproduce:
1. install today's rawhide using DVD created by pungi
2. boot
3.
  
Actual results:
[    8.835320] type=1400 audit(1296059221.316:4): avc:  denied  { create } for  pid=471 comm="systemd-readahe" name="readahead" scontext=system_u:system_r:readahead_t:s0 tcontext=system_u:object_r:readahead_var_run_t:s0 tclass=dir
[    8.895798] systemd[1]: systemd-readahead-collect.service: main process exited, code=exited, status=1


Expected results: no avc


Additional info:

Comment 1 Miroslav Grepl 2011-01-27 11:04:59 UTC

Fixed in selinux-policy-3.9.13-6.fc15.

Note You need to log in before you can comment on or make changes to this bug.