SELinux aborted a Bareos Restore.
It is weird as that was not the first restore.
I wish to learn if this may be due to bareos or not.
The SELinux messages were:
SELinux is preventing /usr/bin/hostname from read access on the chr_file
/dev/nst0.
Additional Information:
Source Context system_u:system_r:hostname_t:s0
Target Context system_u:object_r:tape_device_t:s0
Target Objects /dev/nst0 [ chr_file ]
Source hostname
Source Path /usr/bin/hostname
Source RPM Packages hostname-3.11-4.fc18.x86_64
Policy RPM selinux-policy-3.11.1-108.fc18.noarch
Selinux Enabled True
Policy Type targeted
Enforcing Mode Enforcing
Platform Linux fedora18.soliton 3.11.10-100.fc18.x86_64
Raw Audit Messages
type=AVC msg=audit(1422654869.637:3014): avc: denied { read } for pid=10631
comm="hostname" path="/dev/nst0" dev="devtmpfs" ino=9755
scontext=system_u:system_r:hostname_t:s0
tcontext=system_u:object_r:tape_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1422654869.637:3014): arch=x86_64 syscall=execve
success=yes exit=0 a0=244f070 a1=2450af0 a2=244bd70 a3=10 items=0 ppid=10617
pid=10631 auid=4294967295 uid=991 gid=986 euid=991 suid=991 fsuid=991 egid=986
sgid=986 fsgid=986 ses=4294967295 tty=(none) comm=hostname
exe=/usr/bin/hostname subj=system_u:system_r:hostname_t:s0 key=(null)
Hash: hostname,hostname_t,tape_device_t,chr_file,read
audit2allow
#============= hostname_t ==============
allow hostname_t tape_device_t:chr_file read;
audit2allow -R
require {
type hostname_t;
}
#============= hostname_t ==============
storage_read_tape(hostname_t)
--
You received this message because you are subscribed to the Google Groups
"bareos-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to bareos-users+unsubscr...@googlegroups.com.
To post to this group, send email to bareos-users@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
