Running strict/enforcing, latest Rawhide.
Actually during today's 'yum update':
Running Transaction Installing: kernel 100 % done 1/39 /bin/bash: /root/.bashrc: Permission denied Updating: guile 100 % done 2/39 /sbin/ldconfig: relative path `2' used to build cache error: %post(guile-1.6.4-16.i386) scriptlet failed, exit status 1 Updating: inews 100 % done 3/39
Log shows the following AVC:
Dec 23 07:34:52 fedora kernel: audit(1103816092.011:0): avc: denied { search } for pid=8079 exe=/sbin/ldconfig name=var dev=hda2 ino=4456449 scontext=root:sysadm_r:ldconfig_t tcontext=system_u:object_r:var_t tclass=dir
ldconfig.te has: ifdef(`distro_suse', ` # because of libraries in /var/lib/samba/bin allow ldconfig_t { var_t var_lib_t }:dir search; ')
For fedora too? guile rpm broken?
tom
On Friday 24 December 2004 02:41, Tom London selinux@gmail.com wrote:
Updating: guile 100 % done 2/39 /sbin/ldconfig: relative path `2' used to build cache error: %post(guile-1.6.4-16.i386) scriptlet failed, exit status 1 Updating: inews 100 % done 3/39
Log shows the following AVC:
Dec 23 07:34:52 fedora kernel: audit(1103816092.011:0): avc: denied { search } for pid=8079 exe=/sbin/ldconfig name=var dev=hda2 ino=4456449 scontext=root:sysadm_r:ldconfig_t tcontext=system_u:object_r:var_t tclass=dir
What is it trying to do under /var? It seems that the postinst script just calls "ldconfig" with no parameters. Do you have a reference to /var in /etc/ld.so*?
For fedora too? guile rpm broken?
I can't see how guile can be doing anything to cause this. Unless you have a different version of guile to me (I have 1.6.4-17). My guess at the moment is that there is something unusual about your system.
On Tue, 28 Dec 2004 02:15:30 +1100, Russell Coker russell@coker.com.au wrote:
On Friday 24 December 2004 02:41, Tom London selinux@gmail.com wrote:
I can't see how guile can be doing anything to cause this. Unless you have a different version of guile to me (I have 1.6.4-17). My guess at the moment is that there is something unusual about your system.
Russell,
This seemed to be a problem with the earilier package, guile-1.6.4-16. Got fixed the next day or so with -17, I think....
tom
selinux@lists.fedoraproject.org