Re: F14 - NVIDIA & Labels

On 01/08/2011 07:22 PM, Jorge Fábregas wrote:
> Hi,
>
> Apart from the usual $HOME/.local/share/Trash mislabeled files warnings
> I'm getting (same as F12) these for /dev/nvidia* on Fedora 14:
>
> /dev/nvidia0 from system_u:object_r:device_t:s0 to
> system_u:object_r:xserver_misc_device_t:s0
>
> /dev/nvidiactl from system_u:object_r:device_t:s0 to
> system_u:object_r:xserver_misc_device_t:s0
>
> I don't know...maybe UDEV doesn't have the proper transition rules to
> create xserver_misc_device_t on directoy device_t? I fix the labels but
> when I restart they're created again with device_t.
Probably something broken in nvidia module that creates the device
rather then having udev create the device.

Fortunately there are some solutions for this issue.

1. You could add /dev/nvidia0 to /etc/selinux/restorecond.conf and run the
restorecond service.

chkconfig restorecond --add
service restorecond start

2. If you see in the scripts where nvidiactl is created, you could add a
restorecon right afterwards.

> The desktop runs fine. It's just that obsession to have all files
> properly labeled :)
>
> Regards,
> Jorge
> --
> selinux mailing list
> selinux@lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux

-- selinux mailing list selinux@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/selinux

• This message: [ Message body ]
• Next message: Jorge Fábregas: "Re: F14 - NVIDIA & Labels"
• Previous message: Scott Gifford: "Re: Trouble sending mail from PHP scripts"
• In reply to: Jorge Fábregas: "F14 - NVIDIA & Labels"
• Next in thread: Jorge Fábregas: "Re: F14 - NVIDIA & Labels"
• Reply: Jorge Fábregas: "Re: F14 - NVIDIA & Labels"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]