udev want to unlink/read/create '/dev/.udev.tdb/block at hda@hda1', etc

Tom London selinux at gmail.com
Mon Dec 20 15:38:24 UTC 2004 

Running strict/enforcing, latest Rawhide.

latest udev seems to want to unlink, create, read a horde
of device files on boot up, all uncer /dev/.udev.tdb/

This produces a horde of error messages on boot console
and many avcs.  I attach a few here.

This started on Friday's installs, I believe. I noticed
a bugzilla for udev describing a problem caused
by /dev/.udev.tdb becoming a directory.

Is a labeling/policy change also needed?

tom

Dec 18 10:48:06 fedora kernel: audit(1103366847.891:0): avc:  denied 
{ unlink } for  pid=435 exe=/bin/rm name=block at ram3 dev=tmpfs ino=906
scontext=system_u:system_r:udev_t tcontext=system_u:object_r:device_t
tclass=file
Dec 18 10:48:06 fedora kernel: audit(1103366847.891:0): avc:  denied 
{ unlink } for  pid=435 exe=/bin/rm name=block at ram2 dev=tmpfs ino=904
scontext=system_u:system_r:udev_t tcontext=system_u:object_r:device_t
tclass=file
Dec 18 10:48:06 fedora kernel: audit(1103366847.891:0): avc:  denied 
{ unlink } for  pid=435 exe=/bin/rm name=block at ram15 dev=tmpfs ino=902
scontext=system_u:system_r:udev_t tcontext=system_u:object_r:device_t
tclass=file
Dec 18 10:48:06 fedora kernel: audit(1103366847.891:0): avc:  denied 
{ unlink } for  pid=435 exe=/bin/rm name=block at ram14 dev=tmpfs ino=900
scontext=system_u:system_r:udev_t tcontext=system_u:object_r:device_t
tclass=file

Dec 18 10:48:13 fedora kernel: audit(1103366861.018:0): avc:  denied 
{ read } for  pid=1064 exe=/sbin/udev name=class at tty@tty56 dev=tmpfs
ino=710 scontext=system_u:system_r:udev_t
tcontext=system_u:object_r:device_t tclass=file
Dec 18 10:48:13 fedora kernel: audit(1103366861.019:0): avc:  denied 
{ read } for  pid=1064 exe=/sbin/udev name=class at tty@tty55 dev=tmpfs
ino=707 scontext=system_u:system_r:udev_t
tcontext=system_u:object_r:device_t tclass=file
Dec 18 10:48:13 fedora kernel: audit(1103366861.019:0): avc:  denied 
{ read } for  pid=1064 exe=/sbin/udev name=class at tty@tty54 dev=tmpfs
ino=704 scontext=system_u:system_r:udev_t
tcontext=system_u:object_r:device_t tclass=file
Dec 18 10:48:13 fedora kernel: audit(1103366861.019:0): avc:  denied 
{ read } for  pid=1064 exe=/sbin/udev name=class at tty@tty53 dev=tmpfs
ino=701 scontext=system_u:system_r:udev_t
tcontext=system_u:object_r:device_t tclass=file

Dec 18 10:48:13 fedora kernel: audit(1103366861.194:0): avc:  denied 
{ create } for  pid=1069 exe=/sbin/udev name=class at sound@controlC0
scontext=system_u:system_r:udev_t
tcontext=system_u:object_r:sound_device_t tclass=file
Dec 18 10:48:13 fedora kernel: audit(1103366861.482:0): avc:  denied 
{ create } for  pid=1064 exe=/sbin/udev name=block at fd0
scontext=system_u:system_r:udev_t tcontext=system_u:object_r:device_t
tclass=file
Dec 18 10:48:13 fedora kernel: audit(1103366861.584:0): avc:  denied 
{ create } for  pid=1070 exe=/sbin/udev name=class at sound@timer
scontext=system_u:system_r:udev_t
tcontext=system_u:object_r:sound_device_t tclass=file
Dec 18 10:48:13 fedora kernel: audit(1103366861.827:0): avc:  denied 
{ create } for  pid=1071 exe=/sbin/udev name=class at sound@pcmC0D1c
scontext=system_u:system_r:udev_t
tcontext=system_u:object_r:sound_device_t tclass=file
Dec 18 10:48:13 fedora kernel: audit(1103366861.967:0): avc:  denied 
{ create } for  pid=1072 exe=/sbin/udev name=class at sound@adsp
scontext=system_u:system_r:udev_t
tcontext=system_u:object_r:sound_device_t tclass=file

-- 
Tom London

More information about the fedora-selinux-list mailing list