Java and avc: granted { execmem }
Paul Howarth
paul at city-fan.org
Thu Apr 27 11:59:08 UTC 2006
Zac Tolley wrote:
> I have build a new Fedora Core 5 box, and installed Suns Java, version
> 1.5, and use that to run OpenNMS and Tomcat.
>
> I can't use the Java that came with Fedora, it just isn't supported by
> OpenNMS, and breaks when you try to use it.
>
> The problem is I my messages file is full of lines like:
>
> Apr 27 12:53:09 opennms kernel: audit(1146138789.013:13219208): avc:
> granted { execmem } for pid=30518 comm="java"
> scontext=root:system_r:unconfined_t:s0-s0:c0.c255
> tcontext=root:system_r:unconfined_t:s0-s0:c0.c255 tclass=process
>
> These are coming up Constantly.
>
> I did try
>
> chcon -t java_exec_t /usr/local/java/bin/java
>
> But the messages keep coming, any ideas?
Have you applied updates to your system? Particularly for SELinux?
The changelog for selinux-policy includes this snippet:
* Mon Apr 03 2006 Dan Walsh <dwalsh at redhat.com> 2.2.29-2
- Add mono dbus support
- Lots of file_context fixes for textrel_shlib_t in FC5
- Turn off execmem auditallow since they are filling log files
So I don't think you should be seeing these on an up to date system.
Paul.
More information about the fedora-list
mailing list