Running latest rawhide, targeted/enforcing.
I see this in both /var/log/messages and
/var/log/setroubleshoot/setroubleshoot.log:
2006-09-28 10:25:45,359 [plugin.ERROR] failed to retrieve rpm info for [unknown]
Traceback (most recent call last):
File "/usr/lib/python2.4/site-packages/setroubleshoot/util.py", line
117, in get_rpm_nvr_by_file_path
mi = ts.dbMatch(rpm.RPMTAG_BASENAMES, path)
TypeError: unknown key type
The following is added in /var/log/messages:
Sep 28 10:25:45 localhost setroubleshoot: SELinux is preventing
/usr/bin/vmnet-natd (unconfined_t) "node_bind" to [unknown]
(inaddr_any_node_t). See audit.log for complete SELinux messages.
id = 9503dabe-b132-4703-b7b5-7f7294aa5034
Here is the AVC from /var/log/audit/audit.log:
type=AVC msg=audit(1159464342.472:22): avc: denied { node_bind } for
pid=3523 comm="vmnet-natd" scontext=user_u:system_r:unconfined_t:s0
tcontext=system_u:object_r:inaddr_any_node_t:s0 tclass=rawip_socket
type=SYSCALL msg=audit(1159464342.472:22): arch=40000003 syscall=102
per=400000 success=no exit=-13 a0=2 a1=bfaf24f0 a2=8a98158 a3=7
items=0 ppid=3457 pid=3523 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0
egid=0 sgid=0 fsgid=0 tty=(none) comm="vmnet-natd"
exe="/usr/bin/vmnet-natd" subj=user_u:system_r:unconfined_t:s0
key=(null)
This is an AVC I get when the VMWare modules start up (I did a
'service vmware start' this time). [I leave the policy unmodified to
catch this as one of my 'testing' cases.]
tom
--
Tom London
--
fedora-selinux-list mailing list
fedora-selinux-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-selinux-list
