Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-hardened

From: Netopyr <NoMiS@×××××××××××.com>
To: gentoo-hardened@l.g.o
Subject: Re: [gentoo-hardened] portage proc problem?
Date: Fri, 03 Feb 2006 19:38:50
Message-Id: 1138995364.9737.37.camel@localhost
In Reply to: Re: [gentoo-hardened] portage proc problem? by Mivz
1 I am upgrading as sysadm_r indeed in permissive mode.
2 my dmesg gives me the following output.
3
4 audit(1138995159.751:9524): avc: denied { create } for pid=11198
5 comm="mknod" name="null" scontext=root:sysadm_r:portage_t
6 tcontext=root:object_r:portage_tmp_t tclass=chr_file
7 audit(1138995159.755:9525): avc: denied { getattr } for pid=11199
8 comm="chmod" name="null" dev=hda3 ino=6427517
9 scontext=root:sysadm_r:portage_t tcontext=root:object_r:portage_tmp_t
10 tclass=chr_file
11 audit(1138995159.755:9526): avc: denied { setattr } for pid=11199
12 comm="chmod" name="null" dev=hda3 ino=6427517
13 scontext=root:sysadm_r:portage_t tcontext=root:object_r:portage_tmp_t
14 tclass=chr_file
15 audit(1138995159.763:9527): avc: denied { write } for pid=11200
16 comm="touch" name="null" dev=hda3 ino=6427517
17 scontext=root:sysadm_r:portage_t tcontext=root:object_r:portage_tmp_t
18 tclass=chr_file
19 audit(1138995159.827:9528): avc: denied { mknod } for pid=11210
20 comm="udevd" capability=27 scontext=root:staff_r:staff_t
21 tcontext=root:staff_r:staff_t tclass=capability
22
23 but what do you mean by "Do you have the portage_t enabeld?" if I need
24 it how can I enable it.
25 Coudn't find anything about it in the docs..
26
27 regards Netopyr
28
29
30 On Wed, 2006-02-01 at 17:18 +0100, Mivz wrote:
31
32 > Netopyr wrote:
33 >
34 > > Hello,I am running a selinux enabled kernel already for a long time
35 > > withoud problems but since my last -uD world I got problems installing
36 > > anything.
37 > > my SElinux won;t allow me to install any program anymore since it got
38 > > access violations on my proc filesystem (at least I think).
39 > > The output at the end of this message will give you more information.
40 > > can someone help me out please?
41 > >
42 > > Kind regards,
43 > >
44 > > Netopyr
45 > >
46 > > -- Example updating udev ---
47 > > >>> Source compiled.
48 > > >>> Test phase [not enabled]: sys-fs/udev-081-r1
49 > >
50 > > >>> Install udev-081-r1 into /var/tmp/portage/udev-081-r1/image/
51 > > category sys-fsACCESS DENIED open_wr: /proc/self/attr/fscreate
52 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
53 > > Permission denied
54 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
55 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
56 > > Permission denied
57 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
58 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
59 > > Permission denied
60 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
61 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
62 > > Permission denied
63 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
64 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
65 > > Permission denied
66 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
67 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
68 > > Permission denied
69 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
70 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
71 > > Permission denied
72 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
73 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
74 > > Permission denied
75 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
76 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
77 > > Permission denied
78 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
79 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
80 > > Permission denied
81 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
82 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
83 > > Permission denied
84 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
85 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
86 > > Permission denied
87 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
88 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
89 > > Permission denied
90 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
91 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
92 > > Permission denied
93 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
94 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
95 > > Permission denied
96 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
97 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
98 > > Permission denied
99 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
100 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
101 > > Permission denied
102 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
103 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
104 > > Permission denied
105 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
106 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
107 > > Permission denied
108 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
109 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
110 > > Permission denied
111 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
112 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
113 > > Permission denied
114 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
115 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
116 > > Permission denied
117 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
118 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
119 > > Permission denied
120 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
121 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
122 > > Permission denied
123 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
124 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
125 > > Permission denied
126 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
127 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
128 > > Permission denied
129 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
130 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
131 > > Permission denied
132 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
133 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
134 > > Permission denied
135 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
136 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
137 > > Permission denied
138 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
139 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
140 > > Permission denied
141 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
142 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
143 > > Permission denied
144 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
145 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
146 > > Permission denied
147 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
148 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
149 > > Permission denied
150 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
151 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
152 > > Permission denied
153 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
154 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
155 > > Permission denied
156 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
157 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
158 > > Permission denied
159 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
160 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
161 > > Permission denied
162 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
163 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
164 > > Permission denied
165 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
166 > > install: cannot set setfscreatecon `root:object_r:portage_ebuild_t':
167 > > Permission denied
168 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
169 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
170 > > Permission denied
171 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
172 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
173 > > Permission denied
174 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
175 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
176 > > Permission denied
177 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
178 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
179 > > Permission denied
180 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
181 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
182 > > Permission denied
183 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
184 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
185 > > Permission denied
186 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
187 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
188 > > Permission denied
189 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
190 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
191 > > Permission denied
192 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
193 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
194 > > Permission denied
195 > > ACCESS DENIED open_wr: /proc/self/attr/fscreate
196 > > install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
197 > > Permission denied
198 > > man:
199 > > prepallstrip:
200 > > strip: i686-pc-linux-gnu-strip --strip-unneeded
201 > > /usr/bin/udevinfo
202 > > /usr/bin/udevtest
203 > > /usr/bin/udevmonitor
204 > > /sbin/udev
205 > > /sbin/udevd
206 > > /sbin/udevsend
207 > > /sbin/udevstart
208 > > /sbin/udevcontrol
209 > > /sbin/udev_run_devd
210 > > /sbin/udev_run_hotplugd
211 > > /sbin/ata_id
212 > > /sbin/vol_id
213 > > /sbin/scsi_id
214 > > /sbin/usb_id
215 > > /sbin/cdrom_id
216 > > /sbin/create_floppy_devices
217 > > /sbin/firmware_helper
218 > > >>> Completed installing udev-081-r1 into
219 > > /var/tmp/portage/udev-081-r1/image/
220 > >
221 > > --------------------------- ACCESS VIOLATION SUMMARY
222 > > ---------------------------LOG FILE =
223 > > "/var/log/sandbox/sandbox-sys-fs_-_udev-081-r1-23054.log"
224 > >
225 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23080/attr/fscreate)
226 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23082/attr/fscreate)
227 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23084/attr/fscreate)
228 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23087/attr/fscreate)
229 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23089/attr/fscreate)
230 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23091/attr/fscreate)
231 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23093/attr/fscreate)
232 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23095/attr/fscreate)
233 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23097/attr/fscreate)
234 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23099/attr/fscreate)
235 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23101/attr/fscreate)
236 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23103/attr/fscreate)
237 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23105/attr/fscreate)
238 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23107/attr/fscreate)
239 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23109/attr/fscreate)
240 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23111/attr/fscreate)
241 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23113/attr/fscreate)
242 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23115/attr/fscreate)
243 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23118/attr/fscreate)
244 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23124/attr/fscreate)
245 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23130/attr/fscreate)
246 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23135/attr/fscreate)
247 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23137/attr/fscreate)
248 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23146/attr/fscreate)
249 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23151/attr/fscreate)
250 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23155/attr/fscreate)
251 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23159/attr/fscreate)
252 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23163/attr/fscreate)
253 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23167/attr/fscreate)
254 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23171/attr/fscreate)
255 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23175/attr/fscreate)
256 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23180/attr/fscreate)
257 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23185/attr/fscreate)
258 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23190/attr/fscreate)
259 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23195/attr/fscreate)
260 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23200/attr/fscreate)
261 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23205/attr/fscreate)
262 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23212/attr/fscreate)
263 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23214/attr/fscreate)
264 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23217/attr/fscreate)
265 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23219/attr/fscreate)
266 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23221/attr/fscreate)
267 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23223/attr/fscreate)
268 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23225/attr/fscreate)
269 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23228/attr/fscreate)
270 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23230/attr/fscreate)
271 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23233/attr/fscreate)
272 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23235/attr/fscreate)
273 > > open_wr: /proc/self/attr/fscreate (symlink to /proc/23241/attr/fscreate)
274 > > --------------------------------------------------------------------------------
275 >
276 >
277 > Did you do this as root in sysadm_r?
278 > Do you have the portage_t enabeld?
279 > What does dmesg gives as output on the denies?
280 > Tryed upgrading in permissive mode?
281 >

Replies

Subject Author
Re: [gentoo-hardened] portage proc problem? Mivz <mivz@×××××××××××××.net>
Report Message
Find on MARC Find on Google Groups