Tom London wrote:
Running targeted/enforcing, latest rawhide:
I get the following AVC on boot up:
type=AVC msg=audit(1125167566.309:8): avc: denied { create } for
pid=2538 comm="dbus-daemon" scontext=system_u:system_r:system_dbusd_t
tcontext=system_u:system_r:system_dbusd_t tclass=netlink_audit_socket
type=SYSCALL msg=audit(1125167566.309:8): arch=40000003 syscall=102
success=no exit=-13 a0=1 a1=bfa37400 a2=e770f8 a3=86b7698 items=0
pid=2538 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0
sgid=0 fsgid=0 comm="dbus-daemon" exe="/usr/bin/dbus-daemon"
type=SOCKETCALL msg=audit(1125167566.309:8): nargs=3 a0=10 a1=3 a2=9
Make sense to add
allow system_dbusd_t self:netlink_audit_socket create_socket_perms;
In *selinux-policy-targeted-1.25.4-10*
tom
--
Tom London
------------------------------------------------------------------------
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
http://www.redhat.com/mailman/listinfo/fedora-selinux-list
--
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
http://www.redhat.com/mailman/listinfo/fedora-selinux-list
