NoMiS at gekkekoeien
Feb 10, 2006, 10:43 AM
Post #7 of 7
(155 views)
Permalink
|
I filed this problem as a bug and Pebenito solved my problem:
------- Comment #1 from pebenito [at] gentoo 2006-02-10 06:38 PST
-------
this is not a policy problem. you must have coreutils 5.93. please
remerge
coreutils with FEATURES="-sandbox"
This solved my problem but I pasted the solution for anyone who have the
same problems had.
On Mon, 2006-02-06 at 18:29 +0100, Mivz wrote:
> I do not run the experimental release.
> But that's probably the problem, you should try the latest stable
> release. If that one does install correct, you could file a bug on the
> experimental release. But whit more info then this post has... I would
> keep that in mind, guessing costs a lot of time.
>
> Netopyr wrote:
>
> > It's really weird all this, as far I can see the dmesg result's don't
> > have anything to do with the the error messages I got.
>
> Sins your error's start at setfscreatecon, a SELinux specific function,
> the problem probably lies whit selinux or it's policy.
> dmesg reports access blocks by selinux, your udev won't build because of
> it's access is blocked. So if the selinux policy blocks your ebuild, it
> would be there. That's why.
>
> > I am absolutely in the role of sysadm_r
> >
> > id = uid=0(root) gid=0(root)
> > groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel),11(floppy),20(dialout),26(tape),27(video),35(games)
> > context=root:sysadm_r:sysadm_t
> >
> > The first time I saw these dmesg error's but whatever I install after
> > it I never saw it again, it just didn't gave me any information then
> > the error messages I supplied.
> > is there any way to so I can give you guy's more info to solve my
> > problem...
> > I did a relabel of my filesystem already without any success.
> > probably I have to mention I am using the ~x86 arch so maybe there is
> > a problem there.
> >
> >
> >
> > On Sun, 2006-02-05 at 15:12 +0100, Mivz wrote:
> >
> >>Netopyr wrote:
> >>
> >>> I am upgrading as sysadm_r indeed in permissive mode.
> >>> my dmesg gives me the following output.
> >>>
> >>> audit(1138995159.751:9524): avc: denied { create } for pid=11198
> >>> comm="mknod" name="null" scontext=root:sysadm_r:portage_t
> >>> tcontext=root:object_r:portage_tmp_t tclass=chr_file
> >>> audit(1138995159.755:9525): avc: denied { getattr } for pid=11199
> >>> comm="chmod" name="null" dev=hda3 ino=6427517
> >>> scontext=root:sysadm_r:portage_t tcontext=root:object_r:portage_tmp_t
> >>> tclass=chr_file
> >>> audit(1138995159.755:9526): avc: denied { setattr } for pid=11199
> >>> comm="chmod" name="null" dev=hda3 ino=6427517
> >>> scontext=root:sysadm_r:portage_t tcontext=root:object_r:portage_tmp_t
> >>> tclass=chr_file
> >>> audit(1138995159.763:9527): avc: denied { write } for pid=11200
> >>> comm="touch" name="null" dev=hda3 ino=6427517
> >>> scontext=root:sysadm_r:portage_t tcontext=root:object_r:portage_tmp_t
> >>> tclass=chr_file
> >>> audit(1138995159.827:9528): avc: denied { mknod } for pid=11210
> >>> comm="udevd" capability=27 scontext=root:staff_r:staff_t
> >>> tcontext=root:staff_r:staff_t tclass=capability
> >>>
> >>> but what do you mean by "Do you have the portage_t enabeld?" if I need
> >>> it how can I enable it.
> >>> Coudn't find anything about it in the docs..
> >>
> >>
> >>You don't need it. It's a role you can enable in tunables, wich enabels
> >>you to emerge as portage_r instead of sysadm_r.
> >>
> >>But the last line in your dmesg says root:staff_r:staff_t, sure your in
> >>sysadm_r?
> >>It is a access problem, so something is blocking.
> >>Mabey you need to relabel you filesystem.
> >>
> >>>
> >>> regards Netopyr
> >>>
> >>>
> >>> On Wed, 2006-02-01 at 17:18 +0100, Mivz wrote:
> >>>
> >>>>Netopyr wrote:
> >>>>
> >>>>> Hello,I am running a selinux enabled kernel already for a long time
> >>>>> withoud problems but since my last -uD world I got problems installing
> >>>>> anything.
> >>>>> my SElinux won;t allow me to install any program anymore since it got
> >>>>> access violations on my proc filesystem (at least I think).
> >>>>> The output at the end of this message will give you more information.
> >>>>> can someone help me out please?
> >>>>>
> >>>>> Kind regards,
> >>>>>
> >>>>> Netopyr
> >>>>>
> >>>>> -- Example updating udev ---
> >>>>> >>> Source compiled.
> >>>>> >>> Test phase [not enabled]: sys-fs/udev-081-r1
> >>>>>
> >>>>> >>> Install udev-081-r1 into /var/tmp/portage/udev-081-r1/image/
> >>>>> category sys-fsACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_ebuild_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> ACCESS DENIED open_wr: /proc/self/attr/fscreate
> >>>>> install: cannot set setfscreatecon `root:object_r:portage_tmp_t':
> >>>>> Permission denied
> >>>>> man:
> >>>>> prepallstrip:
> >>>>> strip: i686-pc-linux-gnu-strip --strip-unneeded
> >>>>> /usr/bin/udevinfo
> >>>>> /usr/bin/udevtest
> >>>>> /usr/bin/udevmonitor
> >>>>> /sbin/udev
> >>>>> /sbin/udevd
> >>>>> /sbin/udevsend
> >>>>> /sbin/udevstart
> >>>>> /sbin/udevcontrol
> >>>>> /sbin/udev_run_devd
> >>>>> /sbin/udev_run_hotplugd
> >>>>> /sbin/ata_id
> >>>>> /sbin/vol_id
> >>>>> /sbin/scsi_id
> >>>>> /sbin/usb_id
> >>>>> /sbin/cdrom_id
> >>>>> /sbin/create_floppy_devices
> >>>>> /sbin/firmware_helper
> >>>>> >>> Completed installing udev-081-r1 into
> >>>>> /var/tmp/portage/udev-081-r1/image/
> >>>>>
> >>>>> --------------------------- ACCESS VIOLATION SUMMARY
> >>>>> ---------------------------LOG FILE =
> >>>>> "/var/log/sandbox/sandbox-sys-fs_-_udev-081-r1-23054.log"
> >>>>>
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23080/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23082/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23084/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23087/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23089/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23091/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23093/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23095/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23097/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23099/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23101/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23103/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23105/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23107/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23109/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23111/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23113/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23115/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23118/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23124/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23130/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23135/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23137/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23146/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23151/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23155/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23159/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23163/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23167/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23171/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23175/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23180/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23185/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23190/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23195/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23200/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23205/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23212/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23214/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23217/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23219/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23221/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23223/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23225/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23228/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23230/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23233/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23235/attr/fscreate)
> >>>>> open_wr: /proc/self/attr/fscreate (symlink to /proc/23241/attr/fscreate)
> >>>>> --------------------------------------------------------------------------------
> >>>>
> >>>>
> >>>>Did you do this as root in sysadm_r?
> >>>>Do you have the portage_t enabeld?
> >>>>What does dmesg gives as output on the denies?
> >>>>Tryed upgrading in permissive mode?
> >>>>
> >>>>
> >>>>
> >>
> >>
> >>
>
|
