Summary: | [TRACKER] SELinux file contexts are being changed during regular system operations | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Sven Vermeulen (RETIRED) <swift> |
Component: | Hardened | Assignee: | SE Linux Bugs <selinux> |
Status: | RESOLVED INVALID | ||
Severity: | normal | Keywords: | Tracker |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: |
Updated list
Updated list Updated list Updated list |
Description
Sven Vermeulen (RETIRED)
2011-12-02 20:17:48 UTC
Created attachment 295355 [details]
Updated list
The /var/lib/texmf stuff is placed by texlive-latex and texlive-basic. However, after re-emerging, the contexts are still as they should be, so can't really reproduce.
Can you try rebuilding those packages and confirm that this problem is still (or isn't anymore) present?
Attached updated list, /var/lib/texmf stripped.
Created attachment 295359 [details]
Updated list
The /etc/init.d updates are imo because of installing the package without FEATURES="selinux". Any file placed by Portage in /etc/init.d gets the initrc_exec_t type:
/etc/init\.d/.* regular file system_u:object_r:initrc_exec_t
Attachment is list where init.d is removed.
Created attachment 295361 [details]
Updated list
The virusmail stuff:
restorecon reset /var/virusmails/1322615320.M591968P28525V0000000000000903I00066A23_2.firewall,S=4467:2,S context system_u:object_r:user_home_t->system_u:object_r:amavis_quarantine_t
restorecon reset /var/virusmails/1322615328.M601156P28525V0000000000000903I00066A24_3.firewall,S=3661:2,S context system_u:object_r:user_home_t->system_u:object_r:amavis_quarantine_t
restorecon reset /var/virusmails/1322615294.M818132P28525V0000000000000903I0006697B_0.firewall,S=3493:2,S context system_u:object_r:user_home_t->system_u:object_r:amavis_quarantine_t
restorecon reset /var/virusmails/1322615301.M994215P28525V0000000000000903I000669C3_1.firewall,S=3394:2,S context system_u:object_r:user_home_t->system_u:object_r:amavis_quarantine_t
restorecon reset /var/virusmails/1322615345.M376831P28525V0000000000000903I00066A25_4.firewall,S=2791:2,S context system_u:object_r:user_home_t->system_u:object_r:amavis_quarantine_t
Can you confirm that /var/virusmails is already labeled as amavis_quarantine_t? It should be. Perhaps the /var/virusmails directory is not created by the package (which package is this btw?).
Created attachment 295363 [details]
Updated list
Stripped:
- Files whose context is correctly set by Portage after installation (i.e. cannot confirm problem)
- Files whose context is correctly set by (selinux-aware) udev and confirmed
- Files whose context change is due to a policy updated (i.e. normal that this occurs now)
- Files that are part of a specific system setting (/nomirror/major-slow.log)
- Files that are generated by logrotate (yes, this makes the files var_log_t for wtmp/btmp, but that isn't an issue afaik)
Dropping others as well, changes are not reproduceable (cannot find cause in sources) |