[fc3] ntpd issue with SELinux and dm

Daniel J Walsh dwalsh at redhat.com
Wed Apr 13 15:51:30 UTC 2005 

Davide Rossetti wrote:

> Fedora Core 3 fully updated
> ntp-4.2.0.a.20040617-4
> selinux-policy-targeted-1.17.30-2.96
>
> Linux xeone 2.6.11-1.14_FC3smp #1 SMP Thu Apr 7 19:38:19 EDT 2005 i686 
> i686 i386 GNU/Linux
>
> [root at xeone ~]# strace -f -t /usr/sbin/ntpd -d -n -u ntp:ntp -p 
> /var/run/ntpd.pid
>
> 17:28:54 execve("/usr/sbin/ntpd", ["/usr/sbin/ntpd", "-d", "-n", "-u", 
> "ntp:ntp", "-p", "/var/run/ntpd.pid"], [/* 34 vars */]) =
> 0
> 17:28:54 uname({sys="Linux", node="xeone", ...}) = 0
> 17:28:54 brk(0)                         = 0x84fd000
> 17:28:54 access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file 
> or directory)
> 17:28:54 open("/etc/ld.so.cache", O_RDONLY) = 3
> ....
> 17:28:54 socket(PF_FILE, SOCK_STREAM, 0) = 9
> 17:28:54 fcntl64(9, F_GETFL)            = 0x2 (flags O_RDWR)
> 17:28:54 fcntl64(9, F_SETFL, O_RDWR|O_NONBLOCK) = 0
> 17:28:54 connect(9, {sa_family=AF_FILE, path="/var/run/nscd/socket"}, 
> 110) = -1 EACCES (Permission denied)
> 17:28:54 close(9)                       = 0
> 17:28:54 socket(PF_FILE, SOCK_STREAM, 0) = 9
> 17:28:54 fcntl64(9, F_GETFL)            = 0x2 (flags O_RDWR)
> 17:28:54 fcntl64(9, F_SETFL, O_RDWR|O_NONBLOCK) = 0
> 17:28:54 connect(9, {sa_family=AF_FILE, path="/var/run/nscd/socket"}, 
> 110) = -1 EACCES (Permission denied)
> 17:28:54 close(9)                       = 0
> 17:28:54 --- SIGSEGV (Segmentation fault) @ 0 (0) ---
> 17:28:54 +++ killed by SIGSEGV +++
>
> the signal is async as I saw it fail in other points as well...
>
> in /var/log/messages I find:
>
> Apr 13 17:28:54 xeone ntpd[15458]: ntpd 4.2.0a at 1.1190-r Mon Oct 11 
> 09:10:20 EDT 2004 (1)
> Apr 13 17:28:54 xeone ntpd[15458]: precision = 66.000 usec
> Apr 13 17:28:54 xeone ntpd[15458]: Listening on interface wildcard, 
> 0.0.0.0#123
> Apr 13 17:28:54 xeone ntpd[15458]: Listening on interface wildcard, 
> ::#123
> Apr 13 17:28:54 xeone ntpd[15458]: Listening on interface lo, 
> 127.0.0.1#123
> Apr 13 17:28:54 xeone ntpd[15458]: Listening on interface eth0, 
> 10.0.0.75#123
> Apr 13 17:28:54 xeone ntpd[15458]: kernel time sync status 0040
> Apr 13 17:28:54 xeone kernel: audit(1113406134.559:0): avc:  denied  { 
> write } for  pid=15458 exe=/usr/sbin/ntpd name=root dev=dm
> -0 ino=1160993 scontext=root:system_r:ntpd_t 
> tcontext=root:object_r:user_home_dir_t tclass=dir
>
> [root at xeone ~]# df
> Filesystem           1K-blocks      Used Available Use% Mounted on
> /dev/mapper/VolGroup00-LogVol00
>                      15449552   2584572  12080188  18% /
> /dev/sda1               256666     30601    212813  13% /boot
> none                    515232         0    515232   0% /dev/shm
>
> file context of dm inodes are:
>
> [root at xeone ~]# ls -lZ /dev/dm*
> brw-r-----  root     root     system_u:object_r:fixed_disk_device_t 
> /dev/dm-0
> brw-r-----  root     root     system_u:object_r:fixed_disk_device_t 
> /dev/dm-1
>
This is trying to write to a user_home_dir_t?
What does
ls -laZ /var/run/nscd
show?


--

More information about the fedora-test-list mailing list