[DSE-Dev] Bug#678564: selinux-policy-default: Several process are running in incorrect context when using systemd

ayaka randylxr at gmail.com
Sun Dec 2 06:00:58 UTC 2012 

Package: selinux-policy-default
Version: 2:2.20110726-11
Followup-For: Bug #678564

Dear Maintainer,

   The context of /lib/systemd/systemd is system_u:object_r:lib_t:SystemLow,   but I think the correct is system_u:object_r:init_exec_t:SystemLow
   The context of /usr/sbin/gdm3 is system_u:object_r:bin_t:SystemLow, but I
   think the correct is system_u:object_r:xdm_exec_t:SystemLow
   I chconed they
   Althought the /usr/bin/dbus-daemon is system_u:object_r:dbusd_exec_t:SystemLow, /usr/bin/X11/dbus-daemon is system_u:object_r:dbusd_exec_t:SystemLow
   But in ps axZ 
   system_u:system_r:init_t:s0      2182 ?        Ssl    0:01
   /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile
   --systemd-activation
   user_u:user_r:user_dbusd_t:s0    4135 ?        Ssl    0:00
   /usr/bin/dbus-daemon --fork --print-pid 5 --print-address 7 --session
   user_u:user_r:user_dbusd_t:s0    4145 ?        Ssl    0:00
   /usr/bin/dbus-daemon --fork --print-pid 5 --print-address 7 --session
   Is the context of the first processe correct?
*** End of the template - remove these lines ***


-- System Information:
Debian Release: wheezy/sid
  APT prefers testing-proposed-updates
  APT policy: (500, 'testing-proposed-updates'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.4.19 (SMP w/2 CPU cores)
Locale: LANG=zh_CN.UTF-8, LC_CTYPE=zh_CN.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages selinux-policy-default depends on:
ii  libpam-modules   1.1.3-7.1
ii  libselinux1      2.1.9-5
ii  libsepol1        2.1.4-3
ii  policycoreutils  2.1.10-9
ii  python           2.7.3~rc2-1

Versions of packages selinux-policy-default recommends:
ii  checkpolicy  2.1.8-2
ii  setools      3.3.7-3

Versions of packages selinux-policy-default suggests:
pn  logcheck        <none>
pn  syslog-summary  <none>

-- Configuration Files:
/etc/selinux/default/modules/active/file_contexts.local [Errno 13] Permission non access: u'/etc/selinux/default/modules/active/file_contexts.local'

-- no debconf information

More information about the SELinux-devel mailing list