APM/Selinux question (FC4)

Colin J Thomson colin at g6avk.demon.co.uk
Wed Jun 29 20:02:28 UTC 2005


On Wednesday 29 Jun 2005 20:16, Daniel J Walsh wrote:
> Colin J Thomson wrote:
> >I am trying to get APM to work on this new FC4 box but am having a slight
> >problem, in that issuing the command "apm -S" shows this:
> >
> >Cannot open APM device: Permission denied
> >
> >However if I set "setenforce 0" and try again the Box goes into standby
> > fine, Selinux is all new to me (assuming this is the problem) so any tips
> > would be most welcome, a quick search on Google and the Selinux Docs has
> > shed no light on this.

> What avc messages are you seeing in your /var/log/messages or
> /var/log/audit/audit.log

type=KERNEL msg=audit(1120074088.873:2041891): syscall=5 arch=40000003 
success=no exit=-13 a0=8049f28 a1=1 a2=226ff4 a3=0 items=1 pid=3931 
loginuid=-1 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm=apm 
exe=/usr/bin/apm
type=KERNEL msg=audit(1120074088.873:2041891): item=0 name="/dev/apm_bios" 
inode=749 dev=00:0d mode=020600 uid=500 gid=0 rdev=0a:86
type=KERNEL msg=audit(1120074088.875:2041901): avc:  denied  { dac_override } 
for  capability=1 scontext=root:system_r:apm_t tcontext=root:system_r:apm_t 
tclass=capability
type=KERNEL msg=audit(1120074088.875:2041901): syscall=5 arch=40000003 
success=no exit=-13 a0=8049f28 a1=1 a2=36312e31 a3=0 items=1 pid=3931 
loginuid=-1 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 comm=apm 
exe=/usr/bin/apm
type=KERNEL msg=audit(1120074088.875:2041901): item=0 name="/dev/apm_bios" 
inode=749 dev=00:0d mode=020600 uid=500 gid=0 rdev=0a:86

As a note I also tested with the Selinux packages from "updates-testing" last 
night with the same results.

HTH

Colin
-- 
Fedora Core 4, Custom Built Kernel 2.6.12-ck2
KDE-Redhat-3.4.1-1.0.2.fc4.kde
Registered Linux user number #342953




More information about the fedora-list mailing list