Bug 121793
Summary: | xauth causes avc denied errors | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Thomas Molina <tmolina> |
Component: | policy | Assignee: | Russell Coker <rcoker> |
Status: | CLOSED NOTABUG | QA Contact: | Ben Levenson <benl> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | rawhide | CC: | pgraner |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2004-10-17 01:35:16 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Thomas Molina
2004-04-27 21:05:31 UTC
Converted userhelper policy to a macro so this will work. Fixed in policy-1.11.2-21 Dan Apparently it hasn't made it into Rawhide yet. I will try it when it is available for update. I am up to date with Fedora Core 2 Test 3. Policy is now policy-1.11.3-3. I still get these messages: May 13 19:14:55 dad kernel: audit(1084490095.198:0): avc: denied { execute_no_trans } for pid=12981 exe=/usr/sbin/userhelper path=/usr/X11R6/bin/xauth dev=hda1 ino=393468 scontext=user_u:user_r:user_userhelper_t tcontext=system_u:object_r:xauth_exec_t tclass=file May 13 19:14:55 dad kernel: audit(1084490095.236:0): avc: denied { write } for pid=12981 exe=/usr/X11R6/bin/xauth name=tmolina dev=hdd1 ino=15651 scontext=user_u:user_r:user_userhelper_t tcontext=system_u:object_r:user_home_dir_t tclass=dir May 13 19:14:55 dad kernel: audit(1084490095.237:0): avc: denied { add_name } for pid=12981 exe=/usr/X11R6/bin/xauth name=.Xauthority-c scontext=user_u:user_r:user_userhelper_t tcontext=system_u:object_r:user_home_dir_t tclass=dir May 13 19:14:55 dad kernel: audit(1084490095.237:0): avc: denied { create } for pid=12981 exe=/usr/X11R6/bin/xauth name=.Xauthority-c scontext=user_u:user_r:user_userhelper_t tcontext=user_u:object_r:user_home_dir_t tclass=file May 13 19:14:55 dad kernel: audit(1084490095.237:0): avc: denied { link } for pid=12981 exe=/usr/X11R6/bin/xauth name=.Xauthority-c dev=hdd1 ino=17277 scontext=user_u:user_r:user_userhelper_t tcontext=user_u:object_r:user_home_dir_t tclass=file May 13 19:14:55 dad kernel: audit(1084490095.238:0): avc: denied { write } for pid=12981 exe=/usr/X11R6/bin/xauth name=.Xauthority dev=hdd1 ino=16667 scontext=user_u:user_r:user_userhelper_t tcontext=system_u:object_r:user_home_xauth_t tclass=fileMay 13 19:14:55 dad kernel: audit(1084490095.238:0): avc: denied { remove_name } for pid=12981 exe=/usr/X11R6/bin/xauth name=.Xauthority-c dev=hdd1 ino=17277 scontext=user_u:user_r:user_userhelper_t tcontext=system_u:object_r:user_home_dir_t tclass=dir May 13 19:14:55 dad kernel: audit(1084490095.238:0): avc: denied { unlink } for pid=12981 exe=/usr/X11R6/bin/xauth name=.Xauthority-c dev=hdd1 ino=17277 scontext=user_u:user_r:user_userhelper_t tcontext=user_u:object_r:user_home_dir_t tclass=file Please close this bug. It is no longer reproducable under current Fedora Core. |