Bug 1109166

Summary: selinux doesn't allow sending of snmp trap messages by radiusd
Product: Red Hat Enterprise Linux 7 Reporter: David Spurek <dspurek>
Component: selinux-policyAssignee: Miroslav Grepl <mgrepl>
Status: CLOSED ERRATA QA Contact: Eduard Benes <ebenes>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 7.0CC: ebenes, mmalik
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: selinux-policy-3.13.1-2.el7 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 1154712 (view as bug list) Environment:
Last Closed: 2015-03-05 10:39:39 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1154712    

Description David Spurek 2014-06-13 11:48:49 UTC 
Description of problem:
selinux doesn't allow sending of snmp trap messages by radiusd

audit2allow shows following solution:
#============= radiusd_t ==============
allow radiusd_t snmpd_var_lib_t:dir { read getattr open search };
allow radiusd_t snmpd_var_lib_t:file { read getattr open };


Version-Release number of selected component (if applicable):
selinux-policy-3.12.1-153.el7
freeradius-3.0.1-6.el7

How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.299:1427): arch=c000003e syscall=4 success=no exit=-13 a0=acd990 a1=7fff5c9beaf0 a2=7fff5c9beaf0 a3=4 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.299:1427): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.299:1428): arch=c000003e syscall=4 success=no exit=-13 a0=acd990 a1=7fff5c9beaf0 a2=7fff5c9beaf0 a3=7 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.299:1428): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.299:1429): arch=c000003e syscall=257 success=no exit=-13 a0=ffffffffffffff9c a1=7fff5c9bdb50 a2=90800 a3=0 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.299:1429): avc:  denied  { search } for  pid=20436 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.299:1430): arch=c000003e syscall=4 success=no exit=-13 a0=acde80 a1=7fff5c9bc4f0 a2=7fff5c9bc4f0 a3=0 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.299:1430): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.299:1431): arch=c000003e syscall=257 success=no exit=-13 a0=ffffffffffffff9c a1=7fff5c9bea90 a2=90800 a3=0 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.299:1431): avc:  denied  { search } for  pid=20436 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.299:1432): arch=c000003e syscall=4 success=no exit=-13 a0=ace130 a1=7fff5c9be9b0 a2=7fff5c9be9b0 a3=0 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.299:1432): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.299:1433): arch=c000003e syscall=2 success=no exit=-13 a0=7fff5c9be7e0 a1=241 a2=1b6 a3=0 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.299:1433): avc:  denied  { search } for  pid=20436 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.310:1434): arch=c000003e syscall=4 success=no exit=-13 a0=a60990 a1=7fff44bdcbe0 a2=7fff44bdcbe0 a3=4 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.310:1434): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.310:1435): arch=c000003e syscall=4 success=no exit=-13 a0=a60990 a1=7fff44bdcbe0 a2=7fff44bdcbe0 a3=7 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.310:1435): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.310:1436): arch=c000003e syscall=257 success=no exit=-13 a0=ffffffffffffff9c a1=7fff44bdbc40 a2=90800 a3=0 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.310:1436): avc:  denied  { search } for  pid=20434 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.310:1437): arch=c000003e syscall=4 success=no exit=-13 a0=a60e80 a1=7fff44bda5e0 a2=7fff44bda5e0 a3=0 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.310:1437): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.310:1438): arch=c000003e syscall=257 success=no exit=-13 a0=ffffffffffffff9c a1=7fff44bdcb80 a2=90800 a3=0 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.310:1438): avc:  denied  { search } for  pid=20434 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.310:1439): arch=c000003e syscall=4 success=no exit=-13 a0=a61130 a1=7fff44bdcaa0 a2=7fff44bdcaa0 a3=0 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.310:1439): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.310:1440): arch=c000003e syscall=2 success=no exit=-13 a0=7fff44bdc8d0 a1=241 a2=1b6 a3=0 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.310:1440): avc:  denied  { search } for  pid=20434 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.331:1441): arch=c000003e syscall=4 success=no exit=-13 a0=b7bae0 a1=7fff5c9beb00 a2=7fff5c9beb00 a3=1 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.331:1441): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.331:1442): arch=c000003e syscall=4 success=no exit=-13 a0=b7bae0 a1=7fff5c9beb00 a2=7fff5c9beb00 a3=1 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.331:1442): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.331:1443): arch=c000003e syscall=4 success=no exit=-13 a0=b79740 a1=7fff5c9bf160 a2=7fff5c9bf160 a3=1 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.331:1443): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.343:1444): arch=c000003e syscall=4 success=no exit=-13 a0=7fff5c9bebf0 a1=7fff5c9beb60 a2=7fff5c9beb60 a3=7 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.343:1444): avc:  denied  { search } for  pid=20436 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.343:1445): arch=c000003e syscall=4 success=no exit=-13 a0=b561a0 a1=7fff5c9be810 a2=7fff5c9be810 a3=7 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.343:1445): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.343:1446): arch=c000003e syscall=2 success=no exit=-13 a0=7fff5c9be8f0 a1=441 a2=1b6 a3=1 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.343:1446): avc:  denied  { search } for  pid=20436 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.343:1447): arch=c000003e syscall=4 success=no exit=-13 a0=b561a0 a1=7fff5c9bf070 a2=7fff5c9bf070 a3=7 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.343:1447): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.343:1448): arch=c000003e syscall=2 success=no exit=-13 a0=7fff5c9bf150 a1=441 a2=1b6 a3=1 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.343:1448): avc:  denied  { search } for  pid=20436 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.343:1449): arch=c000003e syscall=4 success=no exit=-13 a0=b561a0 a1=7fff5c9bf070 a2=7fff5c9bf070 a3=7 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.343:1449): avc:  denied  { getattr } for  pid=20436 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.343:1450): arch=c000003e syscall=2 success=no exit=-13 a0=7fff5c9bf150 a1=441 a2=1b6 a3=1 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.343:1450): avc:  denied  { search } for  pid=20436 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.343:1451): arch=c000003e syscall=4 success=no exit=-13 a0=7fff5c9bf600 a1=7fff5c9bf570 a2=7fff5c9bf570 a3=7 items=0 ppid=1 pid=20436 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.343:1451): avc:  denied  { search } for  pid=20436 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.348:1452): arch=c000003e syscall=4 success=no exit=-13 a0=b0eae0 a1=7fff44bdcbf0 a2=7fff44bdcbf0 a3=1 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.348:1452): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.348:1453): arch=c000003e syscall=4 success=no exit=-13 a0=b0eae0 a1=7fff44bdcbf0 a2=7fff44bdcbf0 a3=1 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.348:1453): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.348:1454): arch=c000003e syscall=4 success=no exit=-13 a0=b0c740 a1=7fff44bdd250 a2=7fff44bdd250 a3=1 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.348:1454): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.350:1455): arch=c000003e syscall=4 success=no exit=-13 a0=7fff44bdcce0 a1=7fff44bdcc50 a2=7fff44bdcc50 a3=7 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.350:1455): avc:  denied  { search } for  pid=20434 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.350:1456): arch=c000003e syscall=4 success=no exit=-13 a0=ae91a0 a1=7fff44bdc900 a2=7fff44bdc900 a3=7 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.350:1456): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.350:1457): arch=c000003e syscall=2 success=no exit=-13 a0=7fff44bdc9e0 a1=441 a2=1b6 a3=1 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.350:1457): avc:  denied  { search } for  pid=20434 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.350:1458): arch=c000003e syscall=4 success=no exit=-13 a0=ae91a0 a1=7fff44bdd160 a2=7fff44bdd160 a3=7 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.350:1458): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.350:1459): arch=c000003e syscall=2 success=no exit=-13 a0=7fff44bdd240 a1=441 a2=1b6 a3=1 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.350:1459): avc:  denied  { search } for  pid=20434 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.350:1460): arch=c000003e syscall=4 success=no exit=-13 a0=ae91a0 a1=7fff44bdd160 a2=7fff44bdd160 a3=7 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.350:1460): avc:  denied  { getattr } for  pid=20434 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.350:1461): arch=c000003e syscall=2 success=no exit=-13 a0=7fff44bdd240 a1=441 a2=1b6 a3=1 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.350:1461): avc:  denied  { search } for  pid=20434 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:19:53 2014
type=SYSCALL msg=audit(1402647593.350:1462): arch=c000003e syscall=4 success=no exit=-13 a0=7fff44bdd6f0 a1=7fff44bdd660 a2=7fff44bdd660 a3=7 items=0 ppid=1 pid=20434 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647593.350:1462): avc:  denied  { search } for  pid=20434 comm="snmptrap" name="net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:20:07 2014
type=SYSCALL msg=audit(1402647607.601:1469): arch=c000003e syscall=4 success=yes exit=0 a0=698990 a1=7fff060bd720 a2=7fff060bd720 a3=4 items=0 ppid=21019 pid=21025 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647607.601:1469): avc:  denied  { getattr } for  pid=21025 comm="snmptrap" path="/var/lib/net-snmp" dev="dm-0" ino=33869650 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:s0 tclass=dir
----
time->Fri Jun 13 04:20:07 2014
type=SYSCALL msg=audit(1402647607.601:1470): arch=c000003e syscall=257 success=yes exit=3 a0=ffffffffffffff9c a1=7fff060bc780 a2=90800 a3=0 items=0 ppid=21019 pid=21025 auid=4294967295 uid=95 gid=95 euid=95 suid=95 fsuid=95 egid=95 sgid=95 fsgid=95 tty=(none) ses=4294967295 comm="snmptrap" exe="/usr/bin/snmptrap" subj=system_u:system_r:radiusd_t:s0 key=(null)
type=AVC msg=audit(1402647607.601:1470): avc:  denied  { open } for  pid=21025 comm="snmptrap" path="/var/lib/net-snmp/cert_indexes" dev="dm-0" ino=51701736 scontext=system_u:system_r:radiusd_t:s0 tcontext=system_u:object_r:snmpd_var_lib_t:
Comment 3 Miroslav Grepl 2014-09-01 20:02:44 UTC 
commit a8c9c8c404d2f64eae9cf29ab36c6f6436aa6ce2
Author: Miroslav Grepl <mgrepl>
Date:   Mon Sep 1 22:01:24 2014 +0200

    Allow sending of snmp trap messages by radiusd.
Comment 9 errata-xmlrpc 2015-03-05 10:39:39 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-0458.html