F-11 miscellany

[Paul Howarth]

Get this on every reboot:

type=AVC msg=audit(1245652935.723:12): avc:  denied  { write } for
pid=4130 comm="rm" name="/" dev=dm-18 ino=2
scontext=system_u:system_r:mysqld_safe_t:s0
tcontext=system_u:object_r:mysqld_db_t:s0 tclass=dir type=AVC
msg=audit(1245652935.723:12): avc:  denied  { remove_name } for
pid=4130 comm="rm" name="mysql.sock" dev=dm-18 ino=49156
scontext=system_u:system_r:mysqld_safe_t:s0
tcontext=system_u:object_r:mysqld_db_t:s0 tclass=dir type=AVC
msg=audit(1245652935.723:12): avc:  denied  { unlink } for  pid=4130
comm="rm" name="mysql.sock" dev=dm-18 ino=49156
scontext=system_u:system_r:mysqld_safe_t:s0
tcontext=system_u:object_r:mysqld_var_run_t:s0 tclass=sock_file
type=SYSCALL msg=audit(1245652935.723:12): arch=c000003e syscall=263
success=yes exit=0 a0=ffffffffffffff9c a1=7fff0d7d5ece a2=0
a3=7fff0d7d5060 items=0 ppid=4044 pid=4130 auid=4294967295 uid=0 gid=0
euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295
comm="rm" exe="/bin/rm" subj=system_u:system_r:mysqld_safe_t:s0
key=(null)

I have /var/lib/mysql as a separate filesystem, hence the "/".
Curiously, setroubleshoot misinterprets this as a mislabelled root
directory, saying it should be "root_t" (the root directory *is*
root_t).

Also had this one this morning:

type=AVC msg=audit(1245652948.769:13): avc:  denied  { search } for
pid=4510 comm="gnome-settings-" name="hwdata" dev=dm-2 ino=24065
scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023
tcontext=system_u:object_r:hwdata_t:s0 tclass=dir type=SYSCALL
msg=audit(1245652948.769:13): arch=c000003e syscall=2 success=no
exit=-13 a0=31e6e1fb0e a1=0 a2=0 a3=1a items=0 ppid=4508 pid=4510
auid=4294967295 uid=42 gid=42 euid=42 suid=42 fsuid=42 egid=42 sgid=42
fsgid=42 tty=(none) ses=4294967295 comm="gnome-settings-"
exe="/usr/libexec/gnome-settings-daemon"
subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 key=(null)

Paul.