Summary: | ~amd64/selinux-9999 htop using getsched on firefox (mozilla_t) | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Amadeusz Sławiński <amade> |
Component: | SELinux | Assignee: | Sven Vermeulen (RETIRED) <swift> |
Status: | VERIFIED FIXED | ||
Severity: | normal | CC: | selinux |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | sec-policy r9 | ||
Package list: | Runtime testing required: | --- |
Description
Amadeusz Sławiński
2012-11-27 17:48:08 UTC
One more thing, htop seems to run just fine, it's just filling up logs each time when I start it. Yes, I also couldn't find a different behavior when allowing or denying it (also, it's just with the ~arch htop currently). I've added in dontaudits for the user domains. Is in repo, will be in rev 9 I'm still getting those with -9999 Dec 9 11:38:19 lain kernel: [ 2524.838821] type=1400 audit(1355049499.985:40477): avc: denied { getsched } for pid=2365 comm="htop" scontext=staff_u:staff_r:staff_t tcontext=staff_u:staff_r:mozilla_t tclass=process Did you rebuild selinux-base and selinux-base-policy? And did you re-enable the dontaudits? Ah dontaudit's... sorry for the noise r9 in hardened-dev overlay r9 in main repo, ~arch'ed Forgot to mention... stabilized a while ago ;) |