On Sat, Feb 18, 2012 at 11:13:36AM +0100, Tomáš Dobrovolný wrote:
> I have installed new machine using
> http://www.gentoo.org/proj/en/hardened/selinux/selinux-handbook.xml .
> Everything was in order. But when I restart in "full function SELinux"
> in permissive mode in my log are following avc errors. I think, I forgot
> to install something, or turn on.
[...]
>From the denials and your kernel configuration, I think you are using an
initrd or initramfs system. Currently, we do not support SELinux when using
initrd/initramfs because the suckers don't play well. There's an open bug on
it, and I hope I can get us with a working initramfs soon.
But for the mean time, either drop the initramfs/initrd system, or boot in
permissive mode and switch to enforcing during the boot-up (for instance
through an init script in the boot runlevel).
Wkr,
Sven Vermeulen
