Re: AVCs denied from latest FC4 kernel startup

On Mon, 6 Feb 2006, Stephen Smalley wrote:

On Sat, 2006-02-04 at 23:35 -0500, Matthew Saltzman wrote:
After installing kernel-2.6.15-1.1830_FC4 (or any of the 2.6.15 kernels),
I get the following on startup.  Startup appears to complete normally and
the system seems functional (at least for what I've tried so far).

audit(1139113698.796:2): avc:  denied  { search } for  pid=578
comm="hotplug" name="proc" dev=dm-0 ino=851969
tcontext=system_u:object_r:unlabeled_t tclass=dir

Likely an interleaving of device detection / hotplug execution with the
initial policy load by init, during which inodes are still being set up
by SELinux.  bugzilla against the kernel please.


		Matthew Saltzman

Clemson University Math Sciences
mjs AT clemson DOT edu

