From mboxrd@z Thu Jan  1 00:00:00 1970
From: dominick.grift@gmail.com (Dominick Grift)
Date: Tue, 12 Feb 2013 22:12:54 +0100
Subject: [refpolicy] RFC: kernel_t exec rights on cgroup_t files
In-Reply-To: <20130212214744.5c799dc9@gentp.lnet>
References: <20130212213109.5a3b0e72@gentp.lnet>
	<1360701299.2559.43.camel@d30> <20130212214744.5c799dc9@gentp.lnet>
Message-ID: <1360703574.2559.50.camel@d30>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On Tue, 2013-02-12 at 21:47 +0100, aranea at aixah.de wrote:
> 
> The problem is that there are no denial messages, even if I disable the dontaudit rules.
> But I'm absolutely sure SELinux is causing the problem, as everything works in permissive mode.
> 

Did you also look for them in dmesg? But yes with these early boot
things logging may be an issue.

Kind of hard to troubleshoot without any AVC denials

Is that script in initramfs? Maybe there is a way for whatever runs it
to be more verbose.

> 
> Regards, Luis Ressel
> _______________________________________________
> refpolicy mailing list
> refpolicy at oss.tresys.com
> http://oss.tresys.com/mailman/listinfo/refpolicy