.udev.tdb ?

Tom London selinux at comcast.net
Tue Jul 20 03:24:45 UTC 2004


I'm getting lots of of 'denied' avc for /dev/.udev.tdb from /sbin/udev.
I see an entry in file_contexts for '/dev/udev.tbl' (which doesn't
seem to exist on my system).  Has .udev.tbd replaced udev.tbl?
(udev_db in /etc/udev/udev.conf is set to /dev/.udev.tdb).

tom

[udev-029-4, selinux-policy-strict-1.15.7-1]
----------------------------------------------------------------
Jul 19 18:58:54 fedora kernel: audit(1090288734.253:0): avc:  denied  { 
read write } for  pid=2720 exe=/sbin/udev name=.udev.tdb dev=hda2 
ino=2698913 scontext=system_u:system_r:udev_t 
tcontext=system_u:object_r:device_t tclass=file
Jul 19 18:58:54 fedora kernel: audit(1090288734.284:0): avc:  denied  { 
read write } for  pid=2727 exe=/sbin/udev name=.udev.tdb dev=hda2 
ino=2698913 scontext=system_u:system_r:udev_t 
tcontext=system_u:object_r:device_t tclass=file
Jul 19 18:58:54 fedora kernel: audit(1090288734.314:0): avc:  denied  { 
read write } for  pid=2734 exe=/sbin/udev name=.udev.tdb dev=hda2 
ino=2698913 scontext=system_u:system_r:udev_t 
tcontext=system_u:object_r:device_t tclass=file
Jul 19 18:58:54 fedora kernel: audit(1090288734.344:0): avc:  denied  { 
read write } for  pid=2741 exe=/sbin/udev name=.udev.tdb dev=hda2 
ino=2698913 scontext=system_u:system_r:udev_t 
tcontext=system_u:object_r:device_t tclass=file
Jul 19 18:58:54 fedora kernel: audit(1090288734.705:0): avc:  denied  { 
read write } for  pid=2824 exe=/sbin/udev name=.udev.tdb dev=hda2 
ino=2698913 scontext=system_u:system_r:udev_t 
tcontext=system_u:object_r:device_t tclass=file
Jul 19 18:58:54 fedora kernel: audit(1090288734.707:0): avc:  denied  { 
read write } for  pid=2825 exe=/sbin/udev name=.udev.tdb dev=hda2 
ino=2698913 scontext=system_u:system_r:udev_t 
tcontext=system_u:object_r:device_t tclass=file
Jul 19 18:58:54 fedora kernel: audit(1090288734.710:0): avc:  denied  { 
read write } for  pid=2826 exe=/sbin/udev name=.udev.tdb dev=hda2 
ino=2698913 scontext=system_u:system_r:udev_t 
tcontext=system_u:object_r:device_t tclass=file




More information about the selinux mailing list