SELinux prohibits PCMCIA modem

Steve Snyder swsnyder at insightbb.com
Sat Aug 6 12:42:22 UTC 2005


When my shiny-new FC4 installation boots, I get the following SELinux
(config: SELINUX=enforcing) errors when attempting to configure the
PCMCIA modem:

kernel: audit(1123330762.372:2): avc:  denied  { read } for  pid=1628 comm="serial" name="MAKEDEV" dev=tmpfs ino=2379 scontext=system_u:system_r:cardmgr_t tcontext=system_u:object_r:device_t tclass=lnk_file
kernel: audit(1123330762.372:3): avc:  denied  { read } for  pid=1628 comm="serial" name="MAKEDEV" dev=tmpfs ino=2379 scontext=system_u:system_r:cardmgr_t tcontext=system_u:object_r:device_t tclass=lnk_file
kernel: audit(1123330762.372:4): avc:  denied  { read } for  pid=1628 comm="serial" name="MAKEDEV" dev=tmpfs ino=2379 scontext=system_u:system_r:cardmgr_t tcontext=system_u:object_r:device_t tclass=lnk_file
kernel: audit(1123330762.405:5): avc:  denied  { associate} for  pid=1632 comm="ln" name="modem" scontext=system_u:object_r:cardmgr_lnk_ttcontext=system_u:object_r:tmpfs_t tclass=filesystem

The way it is supposed to work is that a /dev/ttyS0 device is created and
then a /dev/modem symlink points to that serial port.

Since the errors references tmpfs, I should mention that I have /tmp mounted
on a tmpfs filesystem.

Can anyone tell me a work-around for this?

Thanks.




More information about the fedora-list mailing list