[DSE-Dev] Bug#678564: Bug#678564: selinux-policy-default: Several process are running in incorrect context when using systemd
Russell Coker
russell at coker.com.au
Mon Jun 25 06:23:39 UTC 2012
On Mon, 25 Jun 2012, Laurent Bigonville <bigon at debian.org> wrote:
> With SysV init:
>
> system_u:system_r:init_t:s0 1 ? Ss 0:00 init [2]
>
> system_u:system_r:initrc_t:s0 2979 ? Ss 0:00 /usr/sbin/tcsd
I'll add tcsd.pp to the next upload.
> system_u:system_r:initrc_t:s0 3240 ? Ss 0:00
> /usr/sbin/acpi_fakekeyd
If apm.pp is loaded then that should be running in apmd_t.
> system_u:system_r:initrc_t:s0 3259 ? Ssl
> 0:06 /usr/sbin/apt-cacher-ng -c /etc/apt-cacher-ng
> pidfile=/var/run/apt-cacher-ng/pid
> SocketPath=/var/run/apt-cacher-ng/socket foreground=0
What exactly does that do? We need to run that in a different domain.
> system_u:system_r:initrc_t:s0 3295 ? Ss 0:00
> /usr/sbin/irqbalance
I'll add the irqbalance.pp to an initial load if the Debian package is
installed.
> system_u:system_r:initrc_t:s0 3348 ? Ss
> 0:00 /usr/sbin/kerneloops
Need kerneloops.pp
> system_u:system_r:initrc_t:s0 3628 ?
> Ss 0:00 /usr/sbin/bluetoothd
Need bluetooth.pp
> system_u:system_r:initrc_t:s0 3658 ?
> Ss 0:00 /sbin/upsd
I'll add nut.pp to the build list.
> system_u:system_r:initrc_t:s0 3703 ?
> Ss 0:00 /sbin/upsmon system_u:system_r:initrc_t:s0 3706 ? S
> 0:00 /sbin/upsmon
That's nut.pp too.
> system_u:system_r:initrc_t:s0 3736 ? S
> 0:00 /usr/sbin/smartd --pidfile /var/run/smartd.pid
Need smartmon.pp
> system_u:system_r:initrc_t:s0 3820 ? Ss 0:07
> /lib/nut/usbhid-ups -a ellipse
Hopefully nut.pp will do that.
> system_u:system_r:initrc_t:s0 4100 ?
> Ss 0:00 /usr/sbin/minissdpd -i 0.0.0.0
We need policy for that.
I will upload a new policy package to Unstable shortly to give you nut.pp and
tcsd.pp for testing. Probably they will have some issues and I'll do another
upload tomorrow to fix them.
--
My Main Blog http://etbe.coker.com.au/
My Documents Blog http://doc.coker.com.au/
More information about the SELinux-devel
mailing list