Comment # 14 on bug 1228742 from Philippe Condé 
(In reply to Cathy Hu from comment #13)
> this one will be fixed from our side (i am currently waiting for review from
> a colleague):
> type=AVC msg=audit(1725029554.795:1882): avc:  denied  { ipc_info } for 
> pid=485060 comm="libvirt_parthel"
> scontext=system_u:system_r:virtstoraged_t:s0
> tcontext=system_u:system_r:kernel_t:s0 tclass=system permissive=1
> 
> 
> this one, please try also labeling it virt_image_t:
> type=AVC msg=audit(1725029554.798:1883): avc:  denied  { getattr } for 
> pid=485060 comm="libvirt_parthel" path="/dev/sda2" dev="devtmpfs" ino=390
> scontext=system_u:system_r:virtstoraged_t:s0
> tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file
> permissive=1

Hello,
Current SELinux
hpprol2:/dev # zypper info selinux-policy | grep Version
Version        : 20240912-282.1
hpprol2:/dev # 
 but I have still theses errors 
type=AVC msg=audit(1726392259.300:227): avc:  denied  { ipc_info } for 
pid=21501 comm="libvirt_parthel" scontext=system_u:system_r:virtstoraged_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=system permissive=1
type=AVC msg=audit(1726392259.300:228): avc:  denied  { getattr } for 
pid=21501 comm="libvirt_parthel" path="/dev/sda2" dev="devtmpfs" ino=391
scontext=system_u:system_r:virtstoraged_t:s0
tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file permissive=1
type=AVC msg=audit(1726392262.737:261): avc:  denied  { ipc_info } for 
pid=21606 comm="libvirt_parthel" scontext=system_u:system_r:virtstoraged_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=system permissive=1
type=AVC msg=audit(1726392262.737:262): avc:  denied  { getattr } for 
pid=21606 comm="libvirt_parthel" path="/dev/sda2" dev="devtmpfs" ino=391
scontext=system_u:system_r:virtstoraged_t:s0
tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file permissive=1
type=AVC msg=audit(1726392263.270:264): avc:  denied  { ipc_info } for 
pid=21628 comm="libvirt_parthel" scontext=system_u:system_r:virtstoraged_t:s0
tcontext=system_u:system_r:kernel_t:s0 tclass=system permissive=1


Can I relabel /dev/sda2 without problem for other programs trying to access the
partition /dev/sda2? 

Many thanks in advance
Philippe

You are receiving this mail because: