SELinux: class kernel_service not defined in policy
Stephen Smalley
sds at tycho.nsa.gov
Mon Jan 5 19:18:42 UTC 2009
On Mon, 2009-01-05 at 14:16 -0500, Daniel J Walsh wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Antonio Olivares wrote:
> > What does the following mean?
> >
> > SELinux: class kernel_service not defined in policy
> >
> >
> > running rawhide btw.
> >
> > Regards,
> >
> > Antonio
> >
> >
> >
> >
> > --
> > fedora-selinux-list mailing list
> > fedora-selinux-list at redhat.com
> > https://www.redhat.com/mailman/listinfo/fedora-selinux-list
> That means the kernel has a new class defined which we currently do not
> have policy for. Eventually policy will be defined for this class and
> the message will be gone.
>
> Not sure what the kernel_service class is for?
>
> eparis?
Patch already posted to refpolicy list to define it.
It was introduced by David Howell's patches for use by cachefiles as
well as any future kernel services that likewise need to override task
credentials.
--
Stephen Smalley
National Security Agency
More information about the fedora-selinux-list
mailing list