selinux denials for new Fedora 9 install
Daniel J Walsh
dwalsh at redhat.com
Fri May 23 19:07:53 UTC 2008
Antonio Olivares wrote:
> --- Stephen Smalley <sds at tycho.nsa.gov> wrote:
>
>> On Thu, 2008-05-22 at 17:24 -0700, Antonio Olivares
>> wrote:
>>> Dear all,
>>>
>>> I have installed Fedora 9 unto a new machine
>> x86_64, it was working beautifully, I am at this
>> time putting in updates. However I got some selinux
>> denials from setroubleshoot deamon
>>> Tomboy Notes shows this error in box
>>> \begin{box}
>>>
>>> "Tomboy Notes" has quit unexpectedly
>>>
>>> If you reload a panel object, it will
>> automatically be added back to the panel.
>>> \end{box}
>>>
>>> The selinux denials follow:
>>>
>>> Advice/Suggestions/Comments are welcome :)
>> The unlabeled_t indicates that whatever context
>> tomboy was running in
>> was made invalid by a policy update. You should
>> have seen messages
>> in /var/log/messages about invalidating contexts
>> upon the policy load.
>>
>> Re-starting the process should get it into a valid
>> context again.
>>
>> --
>> Stephen Smalley
>> National Security Agency
>>
>>
>
> The updates fixed it :)
>
> Thanks!
>
> Antonio
>
>
There is a bug in policy where mono_t is changed to unconfined_mono_t,
So on upgrade mono_t becomes unlabeled_t.
Tough to fix at this point. Only will happen if you upgrade while
logged in. Starting tomboy again will work and run as unconfined_mono_t.
>
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
More information about the selinux
mailing list