Running latest rawhide, targeted/enforcing.
Noticed the folowing AVC (when I printed from Firefox to an old HP5MP):
type=AVC msg=audit(1150647750.373:32): avc: denied { read } for
pid=2140 comm="python" name="random" dev=tmpfs ino=5947
scontext=system_u:system_r:hplip_t:s0
tcontext=system_u:object_r:random_device_t:s0 tclass=chr_file
type=SYSCALL msg=audit(1150647750.373:32): arch=40000003 syscall=33
success=no exit=-13 a0=42a982b8 a1=4 a2=42aa92c4 a3=2 items=1 pid=2140
auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0
fsgid=0 tty=(none) comm="python" exe="/usr/bin/python"
subj=system_u:system_r:hplip_t:s0
type=CWD msg=audit(1150647750.373:32): cwd="/"
type=PATH msg=audit(1150647750.373:32): item=0 name="/dev/random"
inode=5947 dev=00:10 mode=020666 ouid=0 ogid=0 rdev=01:08
obj=system_u:object_r:random_device_t:s0
Printing seemed to work regardless.
/usr/share/hplip/base/slp.py appears to import random and call
'random.randint()'
tom
--
Tom London
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
