search for: fixed_disk_device_t

...em_u:object_r:proc_t:s0 tclass=file permissive=0 type=AVC msg=audit(1556724763.464:1133343): avc: denied { getattr } for pid=8316 comm="growisofs" path="/dev/dm-1" dev="devtmpfs" ino=21192 scontext=staff_u:staff_r:cdrecord_t:s0-s0:c0.c1023 tcontext=system_u:object_r:fixed_disk_device_t:s0 tclass=blk_file permissive=0 type=AVC msg=audit(1556724763.464:1133344): avc: denied { getattr } for pid=8316 comm="growisofs" path="/dev/sda2" dev="devtmpfs" ino=11888 scontext=staff_u:staff_r:cdrecord_t:s0-s0:c0.c1023 tcontext=system_u:object_r:fixed_disk_devic...

...le disks, not partitions; needed to use zfs (zfsonlinux) benefit features). Problem is that disks (files in /dev) which attached to KVM guest has SELinux context which inaccessible from context of smartd process. [root at srv-1.home ~]# ls -laZ /dev/sd{a..f} brw-rw----. root disk system_u:object_r:fixed_disk_device_t:s0 /dev/sda brw-rw----. root disk system_u:object_r:fixed_disk_device_t:s0 /dev/sdb brw-rw----. qemu qemu system_u:object_r:svirt_image_t:s0:c281,c675 /dev/sdc brw-rw----. qemu qemu system_u:object_r:svirt_image_t:s0:c281,c675 /dev/sdd brw-rw----. qemu qemu system_u:object_r:svirt_image_t:s0:c281,c...

...This cause smartmontools to fail : avc: denied { read write } for pid=2847 comm="smartd" name="megadev0" dev=tmpfs ino=8284 scontext=system_u:system_r:fsdaemon_t:s0 tcontext=system_u:object_r:removable_device_t:s0 tclass=chr_file Changing the context (of megadev0) to fixed_disk_device_t solves the problem, but is this the best solution ? Thanks, -- Philippe Naudin UMR MISTEA : Math?matiques, Informatique et STatistique pour l'Environnement et l'Agronomie INRA, b?timent 29 - 2 place Viala - 34060 Montpellier cedex 2 t?l: 04.99.61.26.34, fax: 04.99.61.29.03, m?l...

Hi all. I'm using libvirt 1.2.6 I want to use lvm storage for my virtual machines. But i want to use new lvm2 feature - thin pool. How can i do that in libvirt? If libvirt can't create it via pool xml, does (and how) to use this setup under libvirt? -- Vasiliy Tolstov, e-mail: v.tolstov@selfip.ru jabber: vase@selfip.ru

...8</capacity> <allocation>4194304</allocation> <target> <path>/dev/lv_pool/lv_test</path> <permissions> <mode>0660</mode> <owner>0</owner> <group>6</group> <label>system_u:object_r:fixed_disk_device_t:s0</label> </permissions> </target> </volume> via 'virsh vol-create lv_pool lv_test.xml' where the 'capacity' and 'allocation' values are the key to determining whether a 'sparse' or 'snapshot' volume from an lvm thin pool will...

...m_console_t:s0-s0:c0.c1023 key=(null) I did a touch /.autorelabel; sync; reboot and received the same error message. I then followed the guidance in the sealert: [root at desk log]# restorecon -v /dev/hda restorecon reset /dev/hda context system_u:object_r:virt_content_t:s0->system_u:object_r:fixed_disk_device_t:s0 And tried to start the VM with no success: [root at desk images]# virsh start Win7-base error: Failed to start domain Win7-base error: internal error Process exited while reading console log output: qemu: could not open disk image /dev/hda Any thoughts? Dave