Fedora Linux Support Community & Resources Center

Home Forums Posting Rules Linux Help Fedora Set-Up Guides Ask Fedora Fedora Project
Go Back   FedoraForum.org > Fedora 17/18 > Security and Privacy
Reload this Page selinux with nvidia0
FedoraForum Search
Forgot Password? Join Us!
Register All Albums FAQ Search Today's Posts Mark Forums Read

Security and Privacy Sadly, malware, spyware, hackers and privacy threats abound in today's world. Let's be paranoid and secure our penguins, and slam the doors on privacy exploits.

 
 
Thread Tools Search this Thread Display Modes
Prev Previous Post   Next Post Next
  #1  
Old 6th November 2007, 06:35 AM
Kiwon Um Offline
Registered User
  
Join Date: Jul 2007
Location: Seoul
Age: 29
Posts: 59
selinux with nvidia0
Hello!

During quite a long time, a SELinux problem with the manually installed nvidia driver has been presented. I've installed the latest nvidia driver manually, not that of the yum package. It certainly works fine.

But my SELinux troubleshooter is showing me a problematic massage.
Although I've done "restorecon -v /dev/nvidia0", it does not work.
I append my SELinux troubleshooter's message except my private information.
Comment for me please.

Bye.
P.s. I don't want to change my SELinux policy, please DO NOT say "turn off your SELinux ".

Quote:
Summary
SELinux is preventing /sbin/ldconfig (ldconfig_t) "read write" to
/dev/nvidia0 (dri_device_t).

Detailed Description
SELinux denied access requested by /sbin/ldconfig. It is not expected that
this access is required by /sbin/ldconfig and this access may signal an
intrusion attempt. It is also possible that the specific version or
configuration of the application is causing it to require additional access.

Allowing Access
Sometimes labeling problems can cause SELinux denials. You could try to
restore the default system file context for /dev/nvidia0, restorecon -v
/dev/nvidia0 If this does not work, there is currently no automatic way to
allow this access. Instead, you can generate a local policy module to allow
this access - see http://fedora.redhat.com/docs/selinu...fc5/#id2961385
Or you can disable SELinux protection altogether. Disabling SELinux
protection is not recommended. Please file a
http://bugzilla.redhat.com/bugzilla/enter_bug.cgi against this package.

Additional Information

Source Context user_u:system_r:ldconfig_t
Target Context system_u:object_r:dri_device_t
Target Objects /dev/nvidia0 [ chr_file ]
Affected RPM Packages glibc-2.6-4 [application]
Policy RPM selinux-policy-2.6.4-49.fc7
Selinux Enabled True
Policy Type targeted
MLS Enabled True
Enforcing Mode Enforcing
Plugin Name plugins.catchall_file
Host Name .............................
Platform Linux ......................... 2.6.23.1-10.fc7 #1
SMP Fri Oct 19 15:39:08 EDT 2007 i686 i686
Alert Count 1
First Seen Tue 06 Nov 2007 03:13:34 PM KST
Last Seen Tue 06 Nov 2007 03:13:34 PM KST
Local ID ................................
Line Numbers

Raw Audit Messages

avc: denied { read, write } for comm="ldconfig" dev=tmpfs egid=0 euid=0
exe="/sbin/ldconfig" exit=0 fsgid=0 fsuid=0 gid=0 items=0 path="/dev/nvidia0"
pid=8172 scontext=user_u:system_r:ldconfig_t:s0 sgid=0
subj=user_u:system_r:ldconfig_t:s0 suid=0 tclass=chr_file
tcontext=system_u:object_r:dri_device_t:s0 tty=pts2 uid=0
Reply With Quote
 

Tags
nvidia0, selinux

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
xwindows wont start..."NVIDIA: could not open device file /dev/nvidia0" slyfox Hardware & Laptops 7 7th November 2009 05:00 AM
Problem configuring SElinux using system-config-selinux GUI majdi Servers & Networking 0 6th September 2008 11:33 AM
Cannot Access /dev/nvidia0 Bassman449 Hardware & Laptops 2 4th August 2008 01:09 AM
selinux: hand tweaking policieand yum selinux-policy updates: overriden or perserved? mbiggerstaff Security and Privacy 1 19th December 2007 12:02 PM
special file /dev/nvidia0 cannot be copied mdogruel Hardware & Laptops 0 5th June 2007 03:31 PM


Current GMT-time: 12:53 (Wednesday, 19-06-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat