Bug 205320

Summary: References to "None" in setroubleshoot reports
Product: [Fedora] Fedora Reporter: Dave Malcolm <dmalcolm>
Component: setroubleshootAssignee: Karl MacMillan <kmacmill>
Status: CLOSED RAWHIDE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: rawhide   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-09-08 19:53:54 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Dave Malcolm 2006-09-06 00:06:59 UTC 
Description of problem:
Some setroubleshoot reports contain references to None.  It looks like the
Python parsing code isn't getting something it's expecting.

SELinux is preventing /usr/sbin/showmount (automount_t) "getattr" access to None
(automount_t).

Version-Release number of selected component (if applicable):
setroubleshoot-0.41-1

Actual results:
"SELinux is preventing /usr/sbin/showmount (automount_t) "getattr" access to
None (automount_t).

Sometimes labeling problems can cause SELinux denials. You could try to restore
the default system file context for None, restorecon -v $TARGETPATH. There is
currently no automatic way to allow this access. Instead, you can generate a
local policy module to allow this access - see FAQ - or you can disable SELinux
protection entirely for the application. Disabling SELinux protection is not
recommended. Please file a bug report against this package. Changing the
"automount_disable_trans" boolean to true will disable SELinux protection this
application: "setsebool -P automount_disable_trans=1."
"

Seeing similar problems with:
"SELinux is preventing /sbin/busybox (dhcpc_t) "setuid" access to None (dhcpc_t)."

Should I try and dig out the actual AVC denials?  (maybe the tool should have a
"show me the raw message" option for this?)
Comment 1 Karl MacMillan 2006-09-08 19:53:54 UTC 
Fixed to give a default that indicates there is no path if the audit message
doesn't contain a path instead of None.
Comment 2 Karl MacMillan 2006-09-08 19:54:34 UTC 
*** Bug 205467 has been marked as a duplicate of this bug. ***