swapfile is not automatically enabled

Dawid Gajownik gajownik at fedora.pl
Tue Mar 14 16:07:55 UTC 2006


Dnia 03/14/2006 04:40 PM, Użytkownik Daniel J Walsh napisał:

> Does this cause a problem that you can see or are you just seeing the 
> AVC message?

Well, I'm just a SELinux newbie and I may be wrong, but I think that 
this is a cause. I have disabled dontaudit rules in this way → 
http://fedora.redhat.com/docs/selinux-faq-fc3/index.html#id2827008
and I don't see other AVC messages related to swap:

[root at X ~]# grep -i swap /var/log/audit/audit.log
type=AVC msg=audit(1142351580.781:283): avc:  denied  { getattr } for 
pid=1918 comm="fstab-sync" name="swapfile" dev=hda5 ino=881811 
scontext=system_u:system_r:updfstab_t tcontext=root:object_r:swapfile_t 
tclass=file
type=AVC_PATH msg=audit(1142351580.781:283):  path="/var/swapfile"
type=PATH msg=audit(1142351580.781:283): item=0 name="/var/swapfile" 
flags=0  inode=881811 dev=03:05 mode=0100600 ouid=0 ogid=0 rdev=00:00
type=AVC msg=audit(1142351580.941:285): avc:  denied  { getattr } for 
pid=1921 comm="fstab-sync" name="swapfile" dev=hda5 ino=881811 
scontext=system_u:system_r:updfstab_t tcontext=root:object_r:swapfile_t 
tclass=file
type=AVC_PATH msg=audit(1142351580.941:285):  path="/var/swapfile"
type=PATH msg=audit(1142351580.941:285): item=0 name="/var/swapfile" 
flags=0  inode=881811 dev=03:05 mode=0100600 ouid=0 ogid=0 rdev=00:00
type=AVC msg=audit(1142351581.077:287): avc:  denied  { getattr } for 
pid=1925 comm="fstab-sync" name="swapfile" dev=hda5 ino=881811 
scontext=system_u:system_r:updfstab_t tcontext=root:object_r:swapfile_t 
tclass=file
type=AVC_PATH msg=audit(1142351581.077:287):  path="/var/swapfile"
type=PATH msg=audit(1142351581.077:287): item=0 name="/var/swapfile" 
flags=0  inode=881811 dev=03:05 mode=0100600 ouid=0 ogid=0 rdev=00:00
[root at X ~]#

Feel free to send me patches - I will eagerly test them :)

-- 

   ^_*





More information about the fedora-selinux-list mailing list