For several years I've been doing an rsync across-the-lan backup for home directories. All has worked well until recently (well, since the fedup to f20 last night). Now backups are failing with an inscrutable rsync error. While the errors mention selinux, I don't see any errors in either the sending or receiving machines /var/log/secure logfiles.
exclude=" --exclude=.gvfs --exclude=simplelock --exclude=.popmail.lock --exclude=SingletonLock --exclude=SingletonCookie --exclude=SingletonSocket "
rsync -axHAX --log-file=/var/log/rsync.log --log-file-format="%t [%p] $host %o %f %l" --delete --delete-excluded $exclude /home/ $host:/home/
/var/log/rsync.log: ... 2013/11/24 09:35:21 [15417] rsync: rsync_xal_set: lremovexattr(""/home/wolfgang/dotfiles-f19/.local/share/zeitgeist/fts.index/record.baseB"","security.selinux") failed: Permission denied (13) 2013/11/24 09:35:21 [15417] rsync: rsync_xal_set: lremovexattr(""/home/wolfgang/dotfiles-f19/.local/share/zeitgeist/fts.index/termlist.baseA"","security.selinux") failed: Permission denied (13) 2013/11/24 09:35:21 [15417] rsync: rsync_xal_set: lremovexattr(""/home/wolfgang/dotfiles-f19/.local/share/zeitgeist/fts.index/termlist.baseB"","security.selinux") failed: Permission denied (13) 2013/11/24 09:35:21 [15417] rsync: rsync_xal_set: lremovexattr(""/home/wolfgang/hackbin/monitor-layout"","security.selinux") failed: Permission denied (13) 2013/11/24 09:35:23 [15417] rsync error: unexplained error (code 255) at rsync.c(634) [sender=3.1.0pre1]
Any ideas what's up and what I need to do to get this working again?
-wolfgang
On 24.11.2013 19:03, Wolfgang S. Rupprecht wrote:
For several years I've been doing an rsync across-the-lan backup for home directories. All has worked well until recently (well, since the fedup to f20 last night). Now backups are failing with an inscrutable rsync error. While the errors mention selinux, I don't see any errors in either the sending or receiving machines /var/log/secure logfiles.
..
Any ideas what's up and what I need to do to get this working again?
You should know better after all these years of use. F20 ain't an official, so https://admin.fedoraproject.org/mailman/listinfo/test
poma
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 11/25/2013 07:51 AM, poma wrote:
On 24.11.2013 19:03, Wolfgang S. Rupprecht wrote:
For several years I've been doing an rsync across-the-lan backup for home directories. All has worked well until recently (well, since the fedup to f20 last night). Now backups are failing with an inscrutable rsync error. While the errors mention selinux, I don't see any errors in either the sending or receiving machines /var/log/secure logfiles.
..
Any ideas what's up and what I need to do to get this working again?
You should know better after all these years of use. F20 ain't an official, so https://admin.fedoraproject.org/mailman/listinfo/test
poma
Look in /var/log/audit/audit.log
ausearch -m avc -ts recent
After failure.
On 25.11.2013 14:58, Daniel J Walsh wrote:
Look in /var/log/audit/audit.log
ausearch -m avc -ts recent
After failure.
You're playing so cool, obeying every rule Dig a way down in your heart You're burning yearning for some Somebody to tell you that life ain't passing you by I'm trying to tell you It will if you don't even try You'll get by if you'd only
Cut loose, footloose, kick off the Sunday shoes Ooh-wee Marie shake it, shake it for me
poma
Daniel J Walsh dwalsh@redhat.com writes:
ausearch -m avc -ts recent
local host (source of rsync):
[root@arbol audit]# ausearch -m avc -ts recent <no matches> [root@arbol audit]#
remote host (destination or rsync):
[root@capsicum audit]# ausearch -m avc -ts recent <no matches> [root@capsicum audit]#
also a tail -f on /var/log/audit/audit.log on both machines while the errors were spewing on the screen showed no corresponding errors (or other output for that matter) in audit.log.
-wolfgang
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 11/25/2013 02:54 PM, Wolfgang S. Rupprecht wrote:
Daniel J Walsh dwalsh@redhat.com writes:
ausearch -m avc -ts recent
local host (source of rsync):
[root@arbol audit]# ausearch -m avc -ts recent <no matches> [root@arbol audit]#
remote host (destination or rsync):
[root@capsicum audit]# ausearch -m avc -ts recent <no matches> [root@capsicum audit]#
also a tail -f on /var/log/audit/audit.log on both machines while the errors were spewing on the screen showed no corresponding errors (or other output for that matter) in audit.log.
-wolfgang
Do you have the audit daemon running?
service auditd status
If you run setenforce 0 to the errors stop?
Daniel J Walsh dwalsh@redhat.com writes:
service auditd status
[wolfgang@arbol ~]$ service auditd status Redirecting to /bin/systemctl status auditd.service auditd.service - Security Auditing Service Loaded: loaded (/usr/lib/systemd/system/auditd.service; enabled) Active: active (running) since Mon 2013-11-25 03:54:01 PST; 12h ago Main PID: 308 (auditd) CGroup: /system.slice/auditd.service ├─308 /sbin/auditd -n ├─313 /sbin/audispd └─315 /usr/sbin/sedispatch
Nov 25 03:54:01 arbol.wsrcc.com systemd[1]: Starting Security Auditing Servi.... Nov 25 03:54:01 arbol.wsrcc.com auditd[308]: Started dispatcher: /sbin/audis...3 Nov 25 03:54:01 arbol.wsrcc.com audispd[313]: priority_boost_parser called w...4 Nov 25 03:54:01 arbol.wsrcc.com audispd[313]: max_restarts_parser called wit...0 Nov 25 03:54:01 arbol.wsrcc.com audispd[313]: audispd initialized with q_dep...s Nov 25 03:54:01 arbol.wsrcc.com systemd[1]: Started Security Auditing Service. Nov 25 03:54:01 arbol.wsrcc.com auditd[308]: Init complete, auditd 2.3.2 lis...) Hint: Some lines were ellipsized, use -l to show in full. [wolfgang@arbol ~]$
I'm beginning to think that this is an internal rsync problem where it can't set the destination file contexts.
-wolfgang
ok, I think I see what happened.
[root@arbol wolfgang]# ll -Z /home/wolfgang/.config/google-chrome-unstable/Default/Extensions/_hidden_/0.0.5.0_0/_locales/lt/messages.json -rw-rw-r-- wolfgang wolfgang ? /home/wolfgang/.config/google-chrome-unstable/Default/Extensions/_hidden_/0.0.5.0_0/_locales/lt/messages.json
The contexts on the source machine are messed up. I recall when I did a "yum distro-sync" that I got an error message between the rpm's for selinux-policy and selinux-policy-targeted about the policy file build failing. I yum erased both rpms (not knowing which caused the error msg) and re-installed them both. I didn't get an error that second time so I figured all went well. Subsequent "restorecon -rv /home" completed without error, so I figured all was well.
Off to google as to how to rebuild the policy file...
-wolfgang
-
Daniel J Walsh -
poma -
Wolfgang S. Rupprecht