mdmpd....
Stephen Smalley
sds at epoch.ncsc.mil
Mon Aug 23 16:23:18 UTC 2004
On Mon, 2004-08-23 at 11:54, Tom London wrote:
> Each time mdmpd tries to start, I get this:
>
> Aug 23 08:20:32 fedora kernel: audit(1093274432.627:0): avc: denied {
> write }
> for pid=2901 exe=/sbin/mdmpd name=mdstat dev=proc ino=-268435099
> scontext=system_u:system_r:mdadm_t tcontext=system_u:object_r:proc_t
> tclass=file
> Aug 23 08:20:32 fedora mdmpd: Failed to open /proc/mdstat
> Aug 23 08:20:32 fedora mdmpd: mdmpd startup failed
> Aug 23 08:20:32 fedora mdmpd: mdmpd failed
>
> Does this need to be added? (Sorry, I don't know how mdmpd is
> doing its thing....)
> tom
>
> [This seems to be an 'old' avc, not related to recent policy changes.]
/proc/mdstat presently only supports reading anyway. But I see that
there is a patch pending to allow writes, see
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=117498.
--
Stephen Smalley <sds at epoch.ncsc.mil>
National Security Agency
More information about the selinux
mailing list