| Summary: | SELinux is preventing 57656220436F6E74656E74 from 'create' accesses on the file location_hertz.pdf. | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Jean-Christophe Baptiste <jc> |
| Component: | selinux-policy | Assignee: | Lukas Vrabec <lvrabec> |
| Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 24 | CC: | dominick.grift, dwalsh, lvrabec, mgrepl, plautrba, pmoore |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | x86_64 | ||
| OS: | Unspecified | ||
| Whiteboard: | abrt_hash:70c5edf57f0dd9fb3dc2347d802e76f6eec7eb7a60ed57cb7d476cff5ba51b76;VARIANT_ID=workstation; | ||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2016-11-07 21:49:28 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
Hi, If you want allow this action plase follow steps in your report: If vous voulez utiliser le paquet plugin Then vous devez désactiver les contrôles SELinux sur les extensions Firefox. Do # setsebool -P unconfined_mozilla_plugin_transition 0 |
Description of problem: It happens every time I try to print a page to a PDF file on my file system. SELinux is preventing 57656220436F6E74656E74 from 'create' accesses on the file location_hertz.pdf. ***** Plugin mozplugger (99.1 confidence) suggests ************************ If vous voulez utiliser le paquet plugin Then vous devez désactiver les contrôles SELinux sur les extensions Firefox. Do # setsebool -P unconfined_mozilla_plugin_transition 0 ***** Plugin catchall (1.81 confidence) suggests ************************** If vous pensez que 57656220436F6E74656E74 devrait être autorisé à accéder create sur location_hertz.pdf file par défaut. Then vous devriez rapporter ceci en tant qu'anomalie. Vous pouvez générer un module de stratégie local pour autoriser cet accès. Do allow this access for now by executing: # ausearch -c '57656220436F6E74656E74' --raw | audit2allow -M my-57656220436F6E74656E74 # semodule -X 300 -i my-57656220436F6E74656E74.pp Additional Information: Source Context unconfined_u:unconfined_r:mozilla_plugin_t:s0-s0:c 0.c1023 Target Context unconfined_u:object_r:user_home_t:s0 Target Objects location_hertz.pdf [ file ] Source 57656220436F6E74656E74 Source Path 57656220436F6E74656E74 Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages Policy RPM selinux-policy-3.13.1-191.18.fc24.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 4.7.7-200.fc24.x86_64 #1 SMP Sat Oct 8 00:21:59 UTC 2016 x86_64 x86_64 Alert Count 1 First Seen 2016-10-19 15:20:17 CEST Last Seen 2016-10-19 15:20:17 CEST Local ID 2c9fbdfc-1781-48fc-a947-77f193536fd3 Raw Audit Messages type=AVC msg=audit(1476883217.759:1138): avc: denied { create } for pid=4986 comm=57656220436F6E74656E74 name="location_hertz.pdf" scontext=unconfined_u:unconfined_r:mozilla_plugin_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=0 Hash: 57656220436F6E74656E74,mozilla_plugin_t,user_home_t,file,create Version-Release number of selected component: selinux-policy-3.13.1-191.18.fc24.noarch Additional info: reporter: libreport-2.7.2 hashmarkername: setroubleshoot kernel: 4.7.7-200.fc24.x86_64 type: libreport Potential duplicate: bug 1289477