I'm just trying out openafs on SL6 and ran into the following starting the afs
daemon:
Starting AFS client.....
afsd: some file missing or bad in /usr/vice/etc
Running in permissive mode it worked and the following denials were logged:
type=AVC msg=audit(1305234031.892:15130): avc: denied { search } for
pid=2986 comm="afsd" name="etc" dev=vda1 ino=285455
scontext=unconfined_u:system_r:afs_t:s0
tcontext=system_u:object_r:afs_config_t:s0 tclass=dir
type=AVC msg=audit(1305234031.892:15130): avc: denied { read } for pid=2986
comm="afsd" name="ThisCell" dev=vda1 ino=285515
scontext=unconfined_u:system_r:afs_t:s0
tcontext=system_u:object_r:afs_config_t:s0 tclass=file
type=AVC msg=audit(1305234031.892:15130): avc: denied { open } for pid=2986
comm="afsd" name="ThisCell" dev=vda1 ino=285515
scontext=unconfined_u:system_r:afs_t:s0
tcontext=system_u:object_r:afs_config_t:s0 tclass=file
type=AVC msg=audit(1305234031.894:15131): avc: denied { getattr } for
pid=2986 comm="afsd" path="/usr/afs/etc/ThisCell" dev=vda1 ino=285515
scontext=unconfined_u:system_r:afs_t:s0
tcontext=system_u:object_r:afs_config_t:s0 tclass=file
Is this a known issue?
--
Orion Poplawski
Technical Manager 303-415-9701 x222
NWRA/CoRA Division FAX: 303-415-9702
3380 Mitchell Lane or...@cora.nwra.com
Boulder, CO 80301 http://www.cora.nwra.com
