On Mon, 2004-08-23 at 11:54, Tom London wrote:
Each time mdmpd tries to start, I get this:
Aug 23 08:20:32 fedora kernel: audit(1093274432.627:0): avc: denied {
write }
for pid=2901 exe=/sbin/mdmpd name=mdstat dev=proc ino=-268435099
scontext=system_u:system_r:mdadm_t tcontext=system_u:object_r:proc_t
tclass=file
Aug 23 08:20:32 fedora mdmpd: Failed to open /proc/mdstat
Aug 23 08:20:32 fedora mdmpd: mdmpd startup failed
Aug 23 08:20:32 fedora mdmpd: mdmpd failed
Does this need to be added? (Sorry, I don't know how mdmpd is
doing its thing....)
tom
[This seems to be an 'old' avc, not related to recent policy changes.]
/proc/mdstat presently only supports reading anyway. But I see that
there is a patch pending to allow writes, see
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=117498.
--
Stephen Smalley <sds(a)epoch.ncsc.mil>
National Security Agency