SELinux prohibits PCMCIA modem
Daniel J Walsh
dwalsh at redhat.com
Sun Aug 7 10:21:50 UTC 2005
Steve Snyder wrote:
>When my shiny-new FC4 installation boots, I get the following SELinux
>(config: SELINUX=enforcing) errors when attempting to configure the
>PCMCIA modem:
>
>kernel: audit(1123330762.372:2): avc: denied { read } for pid=1628 comm="serial" name="MAKEDEV" dev=tmpfs ino=2379 scontext=system_u:system_r:cardmgr_t tcontext=system_u:object_r:device_t tclass=lnk_file
>kernel: audit(1123330762.372:3): avc: denied { read } for pid=1628 comm="serial" name="MAKEDEV" dev=tmpfs ino=2379 scontext=system_u:system_r:cardmgr_t tcontext=system_u:object_r:device_t tclass=lnk_file
>kernel: audit(1123330762.372:4): avc: denied { read } for pid=1628 comm="serial" name="MAKEDEV" dev=tmpfs ino=2379 scontext=system_u:system_r:cardmgr_t tcontext=system_u:object_r:device_t tclass=lnk_file
>kernel: audit(1123330762.405:5): avc: denied { associate} for pid=1632 comm="ln" name="modem" scontext=system_u:object_r:cardmgr_lnk_ttcontext=system_u:object_r:tmpfs_t tclass=filesystem
>
>The way it is supposed to work is that a /dev/ttyS0 device is created and
>then a /dev/modem symlink points to that serial port.
>
>Since the errors references tmpfs, I should mention that I have /tmp mounted
>on a tmpfs filesystem.
>
>Can anyone tell me a work-around for this?
>
>Thanks.
>
>
>
I will add this rule to the next update.
--
More information about the fedora-list
mailing list