[FC3] kernel panic after selinux-policy-targeted update
Stephen Smalley
sds at tycho.nsa.gov
Mon Jun 27 14:56:40 UTC 2005
On Mon, 2005-06-27 at 15:22 +0100, D. D. Brierton wrote:
> I ran sudo yum update today and selinux-policy-targeted was updated
> (along with another selinux related package whose name I can't remember)
> and immediately my system became unresponsive and I had to do a hard reboot.
>
> Now I cannot boot into FC3 at all (I'm posting this from Windows). This
> is the error I get:
>
> audit(1119882959.657:0): avc: denied { execmod } for pid=1 comm=init
> path=/lib/tls/libc-2.3.5.so dev=hda3 ino=2638668
> scontext=user_u:system_r:unconfined_t tcontext=system_u:object_r:shlib_t
> tclass=file
> /sbin/init: error while loading shared libraries : /lib/tls/libc.so.6:
> cannot apply additional memory protection after relocation: Permission
> denied
> Kernel panic - not syncing: Attempted to kill init!
>
> Any suggestions on what to do?
>
> I know I can boot with selinux=0. After that, what? Attempt to reinstall
> selinux?
What is your hardware? ppc32 by any chance? execmod has to be allowed
to all file types on that platform (or, as in kernel 2.6.12, the check
has to be disabled completely for ppc32).
/usr/sbin/getsebool allow_execmod shows what?
--
Stephen Smalley
National Security Agency
More information about the fedora-list
mailing list