SELinux preventing D-Bus starting ConsoleKit etc - Was: F10 - pulseaudio not running

Daniel J Walsh dwalsh at redhat.com
Thu May 21 15:43:30 UTC 2009 

On 05/21/2009 11:27 AM, Mike Fleetwood wrote:
> Daniel J Walsh wrote:
>> Your message bus is running as initrc_t which indicates that you have a
>> labeling problem.
>>
>> fixfiles restore
>>
>> Reboot and you should be all set.
>>
>> Your message bus should be running as system_dbusd_t.  It is also running as
>> unconfined_u:unconfined_r which indicates you have stopped and started it.
>>
>> If you run restorecon -R -v /bin  I would figure you will see some
>> mislabeled files.
>
> Logged in to X11 via GDM as my user mfleetwo, then in a terminal su -.
>
> [root at mfleetwo3 ~]# sestatus
> SELinux status:                 enabled
> SELinuxfs mount:                /selinux
> Current mode:                   permissive
> Mode from config file:          enforcing
> Policy version:                 23
> Policy from config file:        targeted
>
> [root at mfleetwo3 ~]# fixfiles restore
> ****************************************/sbin/setfiles:  unable to
> stat file /home/mfleetwo/.gvfs: Permission denied
> /sbin/setfiles:  error while labeling /:  Permission denied
> /sbin/setfiles:  error while labeling /boot:  Permission denied
>
> And in /var/log/audit/audit.log:
> type=FS_RELABEL msg=audit(1242919396.655:30941): user pid=4985 uid=0
> auid=500 ses=2 subj=unconfined_u:unconfined_r:setfiles_t:s0-s0:c0.c1023
> msg='op=mass relabel: exe="/sbin/setfiles" (hostname=?, addr=?,
> terminal=pts/1 res=failed)'
>
> Stopped at this point as to me it looks like 'fixfiles restore' didn't work.
>
> [root at mfleetwo3 ~]# df -k
> Filesystem           1K-blocks      Used Available Use% Mounted on
> /dev/mapper/VolGroup00-LogVol00
>                        46884088  36970092   7504128  84% /
> /dev/sda1               202219     28319    163573  15% /boot
> tmpfs                   772768        76    772692   1% /dev/shm
>
> [root at mfleetwo3 ~]# ls -dZ / /boot
> drwxr-xr-x  root root system_u:object_r:root_t         /
> drwxr-xr-x  root root system_u:object_r:boot_t         /boot
>
> Thanks,
> Mike
>
What file system are you using?

Try
# restorecon -R -v / 2> /dev/null

You will get lots of errors.

More information about the fedora-list mailing list