selinux-policy-targeted BIG problems

Jason L Tibbitts III tibbs at math.uh.edu
Mon Jun 27 06:02:17 UTC 2005


>>>>> "PW" == Philip Wyett <philip.wyett at w-tech.co.uk> writes:

PW> Once I had cleaned this up and reinstalled, I get permission
PW> denied on the nvidia module (yes the proprietary driver) thus
PW> stopping X from starting.

I'm don't use the nvidia driver, but the selinux update has broken
nscd in a different fashion:

nscd: error while loading shared libraries: librt.so.1: failed to map
segment from shared object: Permission denied

audit(1119851000.894:0): avc:  denied  { execute } for  pid=14464
comm=nscd path=/lib/tls/librt-2.3.5.so dev=dm-0 ino=49183
scontext=root:system_r:nscd_t tcontext=system_u:object_r:lib_t
tclass=file

I have added this to bug 160038
(https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=160038)

nscd was broken differently in the previous policy, but was working
with some local hacks.

Unfortunately the machine failed to reboot.  (It rebooted fine just
before I updated the policy, and no other packages or system
configuration was changed.)  I'm not in the office to see what is
broken, but this is definitely scary.

 - J<




More information about the users mailing list