Description of problem: using system-config-nfs Additional info: libreport version: 2.0.14 kernel: 3.6.0-0.rc6.git0.2.fc18.x86_64 description: :SELinux is preventing /usr/bin/mount from 'mounton' accesses on the directory /proc/fs/nfsd. : :***** Plugin catchall (100. confidence) suggests *************************** : :If you believe that mount should be allowed mounton access on the nfsd directory by default. :Then you should report this as a bug. :You can generate a local policy module to allow this access. :Do :allow this access for now by executing: :# grep mount /var/log/audit/audit.log | audit2allow -M mypol :# semodule -i mypol.pp : :Additional Information: :Source Context system_u:system_r:nfsd_t:s0 :Target Context system_u:object_r:nfsd_fs_t:s0 :Target Objects /proc/fs/nfsd [ dir ] :Source mount :Source Path /usr/bin/mount :Port <Unknown> :Host (removed) :Source RPM Packages util-linux-2.22-1.fc18.x86_64 :Target RPM Packages :Policy RPM selinux-policy-3.11.1-21.fc18.noarch :Selinux Enabled True :Policy Type targeted :Enforcing Mode Enforcing :Host Name (removed) :Platform Linux (removed) 3.6.0-0.rc6.git0.2.fc18.x86_64 #1 : SMP Mon Sep 17 17:29:08 UTC 2012 x86_64 x86_64 :Alert Count 2 :First Seen 2012-09-25 20:06:22 GMT :Last Seen 2012-09-25 20:06:22 GMT :Local ID 968332fc-9726-4fb8-866b-1817af00d24e : :Raw Audit Messages :type=AVC msg=audit(1348603582.857:363): avc: denied { mounton } for pid=2396 comm="mount" path="/proc/fs/nfsd" dev="nfsd" ino=1 scontext=system_u:system_r:nfsd_t:s0 tcontext=system_u:object_r:nfsd_fs_t:s0 tclass=dir : : :type=SYSCALL msg=audit(1348603582.857:363): arch=x86_64 syscall=mount success=no exit=EACCES a0=7fb4ccf51240 a1=7fb4ccf51260 a2=7fb4ccf51220 a3=c0ed0001 items=0 ppid=2394 pid=2396 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm=mount exe=/usr/bin/mount subj=system_u:system_r:nfsd_t:s0 key=(null) : :Hash: mount,nfsd_t,nfsd_fs_t,dir,mounton : :audit2allow : :#============= nfsd_t ============== :allow nfsd_t nfsd_fs_t:dir mounton; : :audit2allow -R : :#============= nfsd_t ============== :allow nfsd_t nfsd_fs_t:dir mounton; :
Created attachment 617257 [details] File: type
Created attachment 617258 [details] File: hashmarkername
Is this mounting it a second time? On my machine ls -ldZ /proc/fs/nfsd/ dr-xr-xr-x. root root system_u:object_r:proc_t:s0 /proc/fs/nfsd/
>Is this mounting it a second time? I do not understand. >On my machine [floki@localhost ~]$ ls -ldZ /proc/fs/nfsd/ drwxr-xr-x. root root system_u:object_r:nfsd_fs_t:s0 /proc/fs/nfsd/ [floki@localhost ~]$
mount | grep nfsd
>mount | grep nfsd [floki@localhost ~]$ mount | grep nfsd sunrpc on /proc/fs/nfsd type nfsd (rw,relatime) [floki@localhost ~]$
Which means it was already mounted.