Gentoo Archives: gentoo-hardened

From: "GDS.Marshall" <gdsm@×××××××××××××××××.uk>
To: gentoo-hardened@l.g.o
Subject: [gentoo-hardened] selinux boot fails
Date: Tue, 24 Apr 2007 15:16:43
Message-Id: 3504.88.96.235.249.1177427680.squirrel@squirrelmail.tgfslp.dalmany.co.uk
1 Hello,
2
3 I am using
4 profiles/selinux/x86/2006.1
5 kernel 2.6.20.7
6 booting selinux=1 enforced=1
7 selinuxtype=strict
8
9 Unfortunately, booting stops with the following (plus others)
10 Apr 24 00:34:05 laptop audit(1177374818.420:3): avc: denied { read write
11 } for pid=1 comm="init" name="console" dev=hda7 ino=17092
12 scontext=system_u:system_r:init_t tcontext=system_u:object_r:file_t
13 tclass=chr_file
14 Apr 24 00:34:05 laptop audit(1177374818.420:4): avc: denied { ioctl }
15 for pid=1 comm="init" name="tty0" dev=hda7 ino=20828
16 scontext=system_u:system_r:init_t tcontext=system_u:object_r:file_t
17 tclass=chr_file
18
19 If I use audit2allow to create the necessary policy, I do not get the same
20 problem.
21
22 Has anyone else encountered this please? Is there a proper policy which I
23 should be loading?
24
25 Many thanks,
26
27 Spencer
28
29 --
30 gentoo-hardened@g.o mailing list

Replies

Subject Author
Re: [gentoo-hardened] selinux boot fails Joern Wittek <webmaster@××××××××.de>