Binary package hint: selinux
This morning I was upgrading my hardy server and I was down to the linux-server packages. They failed to install since selinux prevents the execution of depmod. These are the relevant audit entries from the kernel log:
[291527.013942] audit(1207231815.293:9): security_compute_sid: invalid context unconfined_u:unconfined_r:depmod_t for scontext=unconfined_u:unconfined_r:update_modules_t tcontext=system_u:object_r:depmod_exec_t tclass=process
[291618.806344] audit(1207232010.033:10): security_compute_sid: invalid context unconfined_u:unconfined_r:depmod_t for scontext=unconfined_u:unconfined_r:update_modules_t tcontext=system_u:object_r:depmod_exec_t tclass=process
[291655.358313] audit(1207232092.863:11): security_compute_sid: invalid context unconfined_u:unconfined_r:depmod_t for scontext=unconfined_u:unconfined_r:update_modules_t tcontext=system_u:object_r:depmod_exec_t tclass=process
[291660.116976] audit(1207232103.543:12): security_compute_sid: invalid context unconfined_u:unconfined_r:depmod_t for scontext=unconfined_u:unconfined_r:update_modules_t tcontext=system_u:object_r:depmod_exec_t tclass=process
[291665.220323] audit(1207232115.222:13): security_compute_sid: invalid context unconfined_u:unconfined_r:depmod_t for scontext=unconfined_u:unconfined_r:update_modules_t tcontext=system_u:object_r:depmod_exec_t tclass=process
[291667.669766] audit(1207232120.852:14): security_compute_sid: invalid context unconfined_u:unconfined_r:depmod_t for scontext=unconfined_u:unconfined_r:update_modules_t tcontext=system_u:object_r:depmod_exec_t tclass=process
The label for /sbin/depmod is:
# ls -lZ /sbin/depmod
-rwxr-xr-x+ 1 root root system_u:object_r:depmod_exec_t 52920 2008-02-25 15:21 /sbin/depmod
Fixed in refpolicy 0.0.20071214- 0ubuntu3