lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Mon, 04 Sep 2006 10:23:44 +0800
From:	Ian Kent <raven@...maw.net>
To:	Andrew Morton <akpm@...l.org>
Cc:	Trond Myklebust <trond.myklebust@....uio.no>,
	David Howells <dhowells@...hat.com>, torvalds@...l.org,
	steved@...hat.com, linux-fsdevel@...r.kernel.org,
	linux-cachefs@...hat.com, nfsv4@...ux-nfs.org,
	linux-kernel@...r.kernel.org
Subject: Re: [PATCH 0/7] Permit filesystem local caching and NFS superblock
	sharing [try #13]

On Sun, 2006-09-03 at 09:58 -0700, Andrew Morton wrote:
> On Sun, 03 Sep 2006 14:43:00 +0800
> Ian Kent <raven@...maw.net> wrote:
> 
> > On Sat, 2006-09-02 at 23:30 -0700, Andrew Morton wrote:
> > > On Sun, 03 Sep 2006 14:21:30 +0800
> > > Ian Kent <raven@...maw.net> wrote:
> > > 
> > > > I guess you haven't got the autofs module loaded instead of autofs4 by
> > > > mistake.
> > > 
> > > Nope.
> > > 
> > > > So I wonder what the different is between the setups?
> > > 
> > > Beats me.  Maybe cook up a debug patch?
> > 
> > OK.
> > 
> > Could you add "--debug" to DAEMONOPTIONS in /etc/sysconfig/autofs and
> > post the output so I can get some idea where to put the prints please.
> > 
> 
> Sep  3 09:56:40 sony automount[18446]: starting automounter version 4.1.4-29, path = /net, maptype = program, mapname = /etc/auto.net
> Sep  3 09:56:40 sony kernel: SELinux: initialized (dev autofs, type autofs), uses genfs_contexts
> Sep  3 09:56:40 sony automount[18446]: using kernel protocol version 4.00
> Sep  3 09:56:40 sony automount[18446]: using timeout 60 seconds; freq 15 secs
> Sep  3 09:56:53 sony automount[18446]: attempting to mount entry /net/bix
> Sep  3 09:56:53 sony kernel: SELinux: initialized (dev 0:16, type nfs), uses genfs_contexts
> Sep  3 09:56:53 sony automount[18453]: mount(nfs): mkdir_path /net/bix/usr/src failed: Permission denied
> Sep  3 09:56:53 sony automount[18453]: mount(nfs): mkdir_path /net/bix/mnt/export failed: Permission denied

Yes and these should be EXIST.

Could you humor me a little further and load the base selinux policy
that enables rules that "dontaudit" access fails using:

semodule -b /usr/share/selinux/targeted/enableaudit.pp

and see if we get any avc messages.

Ian




-- 
VGER BF report: H 0
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ