selinux and mcelog
m.roth at 5-cent.us
m.roth at 5-cent.us
Fri Feb 17 16:43:58 UTC 2012
I'm running CentOS 6.2, all updates. selinux-policy 3.7.19-126.el6_2.6. I
see /usr/share/selinux/devel/include/admin/mcelog.if:
########################################
## <summary>
## Execute a domain transition to run mcelog.
## </summary>
## <param name="domain">
## <summary>
## Domain allowed to transition.
## </summary>
## </param>
#
interface(`mcelog_domtrans',`
gen_require(`
type mcelog_t, mcelog_exec_t;
')
domtrans_pattern($1, mcelog_exec_t, mcelog_t)
')
Yet, I'm seeing
SELinux is preventing /usr/sbin/mcelog from getattr access on the file
/var/run/mcelog.pid.
Now, from some googling, it *looks* as though this was fixed already. Am I
missing something, or has this bug been reintroduced?
mark
More information about the selinux
mailing list