Description of problem: SELinux is preventing /usr/bin/vmware-user-suid-wrapper from 'execute' accesses on the file . ***** Plugin catchall (100. confidence) suggests ************************** If aby vmware-user-suid-wrapper powinno mieć domyślnie execute dostęp do file. Then proszę to zgłosić jako błąd. Można utworzyć lokalny moduł polityki, aby umożliwić ten dostęp. Do można tymczasowo zezwolić na ten dostęp wykonując polecenia: # grep vmware-user-sui /var/log/audit/audit.log | audit2allow -M mojapolityka # semodule -i mojapolityka.pp Additional Information: Source Context unconfined_u:unconfined_r:vmtools_helper_t:s0-s0:c 0.c1023 Target Context system_u:object_r:bin_t:s0 Target Objects [ file ] Source vmware-user-sui Source Path /usr/bin/vmware-user-suid-wrapper Port <Unknown> Host (removed) Source RPM Packages open-vm-tools-desktop-9.4.0-1.fc20.i686 Target RPM Packages Policy RPM selinux-policy-3.12.1-127.fc20.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 3.13.6-200.fc20.i686 #1 SMP Fri Mar 7 17:28:21 UTC 2014 i686 i686 Alert Count 1 First Seen 2014-03-13 09:10:29 CET Last Seen 2014-03-13 09:10:29 CET Local ID ec4de120-491d-409a-9a95-fef5e54dad63 Raw Audit Messages type=AVC msg=audit(1394698229.655:357): avc: denied { execute } for pid=1788 comm="vmware-user-sui" name="vmtoolsd" dev="dm-2" ino=2508138 scontext=unconfined_u:unconfined_r:vmtools_helper_t:s0-s0:c0.c1023 tcontext=system_u:object_r:bin_t:s0 tclass=file type=SYSCALL msg=audit(1394698229.655:357): arch=i386 syscall=execve success=no exit=EACCES a0=bffaaf9c a1=bffaaf7c a2=bffac07c a3=bffaaf9c items=0 ppid=1 pid=1788 auid=1000 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 egid=1000 sgid=1000 fsgid=1000 ses=1 tty=(none) comm=vmware-user-sui exe=/usr/bin/vmware-user-suid-wrapper subj=unconfined_u:unconfined_r:vmtools_helper_t:s0-s0:c0.c1023 key=(null) Hash: vmware-user-sui,vmtools_helper_t,bin_t,file,execute Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.i686 type: libreport
commit 9f7a5d197c6ea90519701dc4a2f2a2ddc37acaf7 Author: Miroslav Grepl <mgrepl> Date: Thu Mar 13 11:03:41 2014 +0100 Allow vmtools_helper_t to execute bin_t
Description of problem: Got this SELinux denial message on startup Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport
Description of problem: I just started up Fedora and logged in. However it appears there may be a profile issue as I have also got a mention of Keyring not unlocking properly when I logged on. Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport
Description of problem: rebooted O/S after running yum update Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport
Description of problem: This happened immediately after booting and logging into a cinnamon session. Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport
Description of problem: after starting I checked for updates using Yum and the SE error dosplayed. Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport
Description of problem: Alert is shown immediately after startup and login to the system. Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport
Description of problem: This alert occurs right after my KDE desktop loads. I don't have vmware installed. I do have a complete libvirt/kvm/qemu environment installed. I noticed I now have several vmware tools installed (part of open-vm-tools?) I also noticed that vmtoolsd was set as a service so I disabled it because I thought that may be the problem. It no longer appears in my service list (system-config-services gui) but the alert still occurs. The alert does not occur when I run the virtual machine manager (properly prompts for root access to run). Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport
After fresh yesterday's installation of Fedora 20 problem diappeared. I use KDE with 3.13.6-200.fc20.x86_64 kernel.
Description of problem: all I know is the system wouldn't boot so I turned the computer off then turned it back on oh yes the system updated before that Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.i686+PAE type: libreport
selinux-policy-3.12.1-149.fc20 has been submitted as an update for Fedora 20. https://admin.fedoraproject.org/updates/selinux-policy-3.12.1-149.fc20
Package selinux-policy-3.12.1-149.fc20: * should fix your issue, * was pushed to the Fedora 20 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing selinux-policy-3.12.1-149.fc20' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2014-4604/selinux-policy-3.12.1-149.fc20 then log in and leave karma (feedback).
Description of problem: Appears when logged in the first time. Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport
Description of problem: Issue occurs immediately after log in. Repeats during every log in. Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.7-200.fc20.x86_64 type: libreport
Description of problem: After login to the gnome 3 session, was appear this selinux warning. Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.8-200.fc20.x86_64 type: libreport
selinux-policy-3.12.1-149.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.