Bug 230411
| Summary: | gnome-settings-daemon does not start | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Bill Nottingham <notting> |
| Component: | selinux-policy-targeted | Assignee: | Daniel Walsh <dwalsh> |
| Status: | CLOSED RAWHIDE | QA Contact: | Ben Levenson <benl> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | rawhide | CC: | djuran, rstrode, rvokal |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2007-03-12 12:41:15 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Bill Nottingham
2007-02-28 19:20:20 UTC
Avc Messages? type=AVC msg=audit(1172710334.367:28): avc: denied { getattr } for pid=2027
comm="mcstransd" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:setrans_t:s0-s0:c0.c1023
tcontext=system_u:object_r:security_t:s0 tclass=filesystem
type=AVC msg=audit(1172710336.090:29): avc: denied { getattr } for pid=2070
comm="setroubleshootd" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:setroubleshootd_t:s0
tcontext=system_u:object_r:security_t:s0 tclass=filesystem
type=AVC msg=audit(1172710337.294:30): avc: denied { getattr } for pid=2134
comm="mount" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:mount_t:s0 tcontext=system_u:object_r:security_t:s0
tclass=filesystem
type=AVC msg=audit(1172710339.904:31): avc: denied { getattr } for pid=2239
comm="mount" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:mount_t:s0 tcontext=system_u:object_r:security_t:s0
tclass=filesystem
type=AVC msg=audit(1172710339.999:32): avc: denied { execute_no_trans } for
pid=2240 comm="hcid" name="bluetoothd-service-input" dev=dm-0 ino=10118669
scontext=system_u:system_r:bluetooth_t:s0 tcontext=system_u:object_r:lib_t:s0
tclass=file
type=AVC_PATH msg=audit(1172710339.999:32):
path="/usr/lib64/bluetooth/bluetoothd-service-input"
type=AVC msg=audit(1172710341.416:33): avc: denied { getattr } for pid=2310
comm="mount" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:mount_t:s0 tcontext=system_u:object_r:security_t:s0
tclass=filesystem
type=AVC msg=audit(1172710341.420:34): avc: denied { getattr } for pid=2311
comm="umount" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:mount_t:s0 tcontext=system_u:object_r:security_t:s0
tclass=filesystem
type=AVC msg=audit(1172713903.853:19): avc: denied { getattr } for pid=2094
comm="mcstransd" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:setrans_t:s0-s0:c0.c1023
tcontext=system_u:object_r:security_t:s0 tclass=filesystem
type=AVC msg=audit(1172713904.694:20): avc: denied { getattr } for pid=2136
comm="setroubleshootd" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:setroubleshootd_t:s0
tcontext=system_u:object_r:security_t:s0 tclass=filesystem
type=AVC msg=audit(1172713904.709:21): avc: denied { getattr } for pid=2200
comm="mount" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:mount_t:s0 tcontext=system_u:object_r:security_t:s0
tclass=filesystem
type=AVC msg=audit(1172713904.709:22): avc: denied { search } for pid=2201
comm="arping" name="/" dev=sysfs ino=1 scontext=system_u:system_r:netutils_t:s0
tcontext=system_u:object_r:sysfs_t:s0 tclass=dir
type=AVC msg=audit(1172713904.709:22): avc: denied { getattr } for pid=2201
comm="arping" name="eth0" dev=sysfs ino=5421
scontext=system_u:system_r:netutils_t:s0 tcontext=system_u:object_r:sysfs_t:s0
tclass=dir
type=AVC_PATH msg=audit(1172713904.709:22): path="/sys/class/net/eth0"
type=AVC msg=audit(1172713904.709:23): avc: denied { getattr } for pid=2201
comm="arping" name="broadcast" dev=sysfs ino=8315
scontext=system_u:system_r:netutils_t:s0 tcontext=system_u:object_r:sysfs_t:s0
tclass=file
type=AVC_PATH msg=audit(1172713904.709:23): path="/sys/class/net/eth0/broadcast"
type=AVC msg=audit(1172713904.710:24): avc: denied { read } for pid=2201
comm="arping" name="broadcast" dev=sysfs ino=8315
scontext=system_u:system_r:netutils_t:s0 tcontext=system_u:object_r:sysfs_t:s0
tclass=file
type=AVC msg=audit(1172713915.662:25): avc: denied { execute_no_trans } for
pid=2297 comm="hcid" name="bluetoothd-service-input" dev=dm-0 ino=10118669
scontext=system_u:system_r:bluetooth_t:s0 tcontext=system_u:object_r:lib_t:s0
tclass=file
type=AVC_PATH msg=audit(1172713915.662:25):
path="/usr/lib64/bluetooth/bluetoothd-service-input"
type=AVC msg=audit(1172713915.707:26): avc: denied { getattr } for pid=2316
comm="mount" name="/" dev=selinuxfs ino=525
scontext=system_u:system_r:mount_t:s0 tcontext=system_u:object_r:security_t:s0
tclass=filesystem
type=AVC msg=audit(1172713943.930:35): avc: denied { execheap } for pid=3012
comm="beagle-search" scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023
tcontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tclass=process
selinux-policy-2.5.6-1 should have fixed all of these avc messages. A couple of problems I see though are beagle-search running as xdm_t, this looks like you did not transition properly on login? Still happens with 2.5.6-1. No relevant AVCs, afaict. This is fixed in rawhide. |