On 5/24/05, Daniel J Walsh <dwalsh@xxxxxxxxxx> wrote:
> Tom London wrote:
>
> >Running strict/enforcing, latest rawhide.
> >
> >Get the following when logging in:
> >May 21 13:30:16 fedora gdm(pam_unix)[2946]: session opened for user
> >tbl by (uid=0)
> >May 21 13:30:16 fedora kernel: audit(1116707416.740:0): avc: denied
> >{ write } for name=dmix.conf dev=hda2 ino=4523476
> >scontext=system_u:system_r:xdm_t tcontext=system_u:object_r:etc_t
> >tclass=file
> >May 21 13:30:16 fedora ainit: Failed to open file /etc/alsa/pcm/dmix.conf
> >May 21 13:30:16 fedora ainit: Error: Permission denied
> >
> >The file in questions is /etc/alsa/pcm/dmix.conf.
> >
> >/etc/alsa/ainit.conf has:
> >#
> ># overwrite target files, if exists
> >#
> >overwrite = yes
> >
> >#
> ># first config file - for dmix plugin
> >#
> >template_0 = /etc/alsa/pcm/dmix.template
> >target_0 = /etc/alsa/pcm/dmix.conf
> >target_root_file_0 = yes
> >
> >This seems less than perfect to me....
> >Should dmix.conf (and dsnoop.conf) be someplace else? Labeled as
> >xdm_rw_etc_t? (I don't know who else needs to read these files....)
> >
> >tom
> >
> >
> >
> Do you have any idea if xdm is actually trying to write this file, or
> could this just be they used the wrong flags when opening the file?
>
No idea.
I'll test tonight on my 'strict machine'.
tom
--
Tom London
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
http://www.redhat.com/mailman/listinfo/fedora-selinux-list
