ainit (xdm_t) wants to write /etc/alsa/pcm/dmix.conf (etc_t) ...

Tom London selinux at gmail.com
Tue May 24 16:09:29 UTC 2005


On 5/24/05, Daniel J Walsh <dwalsh at redhat.com> wrote:
> Tom London wrote:
> 
> >Running strict/enforcing, latest rawhide.
> >
> >Get the following when logging in:
> >May 21 13:30:16 fedora gdm(pam_unix)[2946]: session opened for user
> >tbl by (uid=0)
> >May 21 13:30:16 fedora kernel: audit(1116707416.740:0): avc:  denied
> >{ write } for  name=dmix.conf dev=hda2 ino=4523476
> >scontext=system_u:system_r:xdm_t tcontext=system_u:object_r:etc_t
> >tclass=file
> >May 21 13:30:16 fedora ainit: Failed to open file /etc/alsa/pcm/dmix.conf
> >May 21 13:30:16 fedora ainit: Error: Permission denied
> >
> >The file in questions is /etc/alsa/pcm/dmix.conf.
> >
> >/etc/alsa/ainit.conf has:
> >#
> ># overwrite target files, if exists
> >#
> >overwrite = yes
> >
> >#
> ># first config file - for dmix plugin
> >#
> >template_0 = /etc/alsa/pcm/dmix.template
> >target_0  = /etc/alsa/pcm/dmix.conf
> >target_root_file_0 = yes
> >
> >This seems less than perfect to me....
> >Should dmix.conf (and dsnoop.conf) be someplace else? Labeled as
> >xdm_rw_etc_t? (I don't know who else needs to read these files....)
> >
> >tom
> >
> >
> >
> Do you have any idea if xdm is actually trying to write this file, or
> could this just be they used the wrong flags when opening the file?
> 
No idea.

I'll test tonight on my 'strict machine'.

tom

-- 
Tom London




More information about the fedora-selinux-list mailing list