Boot Error with SELinux

Ed Fletcher ed at fletcher.ca
Tue Mar 30 07:33:03 UTC 2004 

At 01:59 AM 3/30/04 -0500, James Morris wrote:
>On Mon, 29 Mar 2004, Ed Fletcher wrote:
>
> > This is from the boot sequence. Everything is normal through the Bogomips
> > check.  Then I get:
> > Quote
> > Security Scaffold v1.0.0 initialized
> > SELinux: Initializing
> > SELinux: Starting in permissive mode
> > There is already a security framework initialized, register_security failed
> > Failure registering capabilities with the kernel
> > selinux_register_security: Registering secondary module security
> > Unquote
>
>The above is actually correct.  SELinux loaded as the primary module, then
>the capability module failed to load as the primary module because SELinux
>was there.  SElinux then loaded capability as a secondary security module.
>
> > Quote
> > INIT: version 2.85 booting
> > audit(1080597019.563:0): avc: denied {getattr} for pid=1 exe=/sbin/init
> > path=/dev/initctl dev=hdg9
> > Unquote
> >
>
>Was this the first audit message?

Yes, that was the first one.


> > Sorry if the above boot messages aren't verbatim.  I had to copy them 
> by hand.
>
>The scontext and tcontext components would be most useful, if you get a
>chance to copy them again.

For the first one:
scontext=system_u:system_r:kernel_t
tcontext=system_u:object_r:file_t
tclass=fifo_file

Next one says:
audit (#): avc: denied {read write} for pid=1 
exe=/sbin/init  path=/dev/initctl dev=hdg9
ino=3763872
scontext, tcontext and tclass are the same as the first audit message

Then it says:
Setting default font (latarcyrheb-sun16): . . . no modules for INPUT 
product 11/2/6/56
. . . no modules for INPUT product
. . . no modules for INPUT product
Hmmm . . . just rebooted and got the first two audit messages again then
Setting default font (latarcyrheb-sun16): audit (#): avc: denied
and then the same scontext, tcontext and tclass messages.

There's many more (hundreds? thousands?)  but I can copy a few of them down 
If they'd help.

Ed
--

Ed Fletcher
ed at fletcher.ca

"Ignorance more frequently begets
confidence than does knowledge."
- Charles Darwin

More information about the test mailing list