AVCs denied from latest FC4 kernel startup
Stephen Smalley
sds at tycho.nsa.gov
Mon Feb 6 13:57:33 UTC 2006
On Sat, 2006-02-04 at 23:35 -0500, Matthew Saltzman wrote:
> After installing kernel-2.6.15-1.1830_FC4 (or any of the 2.6.15 kernels),
> I get the following on startup. Startup appears to complete normally and
> the system seems functional (at least for what I've tried so far).
>
> audit(1139113698.796:2): avc: denied { search } for pid=578
> comm="hotplug" name="proc" dev=dm-0 ino=851969
> scontext=system_u:system_r:hotplug_t
> tcontext=system_u:object_r:unlabeled_t tclass=dir
Likely an interleaving of device detection / hotplug execution with the
initial policy load by init, during which inodes are still being set up
by SELinux. bugzilla against the kernel please.
--
Stephen Smalley
National Security Agency
More information about the fedora-selinux-list
mailing list