Bug 217640
Summary: | nscd cannot access avahi socket | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Ulrich Drepper <drepper> |
Component: | selinux-policy | Assignee: | Daniel Walsh <dwalsh> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Ben Levenson <benl> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 6 | CC: | dwalsh |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | 2.4.6-4 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2007-02-13 20:29:26 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Ulrich Drepper
2006-11-29 03:32:26 UTC
Added to auth_use_nsswitch() Which most domains use. Fixed in selinux-policy-2.4.6-1 Some more changes are neded. The code also needs allow nscd_t avahi_var_run_t:dir_search (well, the generic non-nscd specific form). That is in the 2.4.6-1 policy. I have the 2.4.6-1 policy installed, even relabeled everything, and still get this message from nscd. Are you sure you added search permission to the directory and not only access to the socket? I looked at the 2.4.6-1.fc6 sources and the changes are there. But despite having the policy loaded and rebooting and relabeling I continue to get the message. Is for some reason the avahi part not included in your policy? I don't know exactly how the 'optional_policy' macro works. Fixed in selinux-policy-2.4.6-4 Seems to be fixed. |