Bug 510838
Summary: | SELinux is preventing python (hplip_t) "read" security_t. | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | rvs |
Component: | hplip | Assignee: | Tim Waugh <twaugh> |
Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | low | ||
Version: | 11 | CC: | joe, twaugh |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2009-07-13 08:51:51 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
rvs
2009-07-11 10:45:07 UTC
Summary: SELinux is preventing python (hplip_t) "read" security_t. Detailed Description: SELinux denied access requested by python. It is not expected that this access is required by python and this access may signal an intrusion attempt. It is also possible that the specific version or configuration of the application is causing it to require additional access. Allowing Access: You can generate a local policy module to allow this access - see FAQ (http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable SELinux protection altogether. Disabling SELinux protection is not recommended. Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi) against this package. Additional Information: Source Context system_u:system_r:hplip_t:s0 Target Context system_u:object_r:security_t:s0 Target Objects mls [ file ] Source python Source Path /usr/bin/python Port <Unknown> Host localhost.localdomain Source RPM Packages python-2.6-9.fc11 Target RPM Packages Policy RPM selinux-policy-3.6.12-53.fc11 Selinux Enabled True Policy Type targeted MLS Enabled True Enforcing Mode Enforcing Plugin Name catchall Host Name localhost.localdomain Platform Linux localhost.localdomain 2.6.29.5-191.fc11.x86_64 #1 SMP Tue Jun 16 23:23:21 EDT 2009 x86_64 x86_64 Alert Count 46 First Seen Mon 29 Jun 2009 08:43:04 AM PDT Last Seen Sun 12 Jul 2009 04:15:12 PM PDT Local ID 107879bb-cd99-445f-8604-6837608dfbc4 Line Numbers Raw Audit Messages node=localhost.localdomain type=AVC msg=audit(1247440512.956:23): avc: denied { read } for pid=2404 comm="python" name="mls" dev=selinuxfs ino=12 scontext=system_u:system_r:hplip_t:s0 tcontext=system_u:object_r:security_t:s0 tclass=file node=localhost.localdomain type=SYSCALL msg=audit(1247440512.956:23): arch=c000003e syscall=2 success=no exit=218685400 a0=7fffbf5f8270 a1=0 a2=7fffbf5f827c a3=fffffff8 items=0 ppid=2398 pid=2404 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="python" exe="/usr/bin/python" subj=system_u:system_r:hplip_t:s0 key=(null) *** This bug has been marked as a duplicate of bug 507098 *** |