Description of problem: SELinux is preventing /usr/sbin/winbindd from using the 'signull' accesses on a process. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that winbindd should be allowed signull access on processes labeled kernel_t by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # grep winbindd /var/log/audit/audit.log | audit2allow -M mypol # semodule -i mypol.pp Additional Information: Source Context system_u:system_r:winbind_t:s0 Target Context system_u:system_r:kernel_t:s0 Target Objects [ process ] Source winbindd Source Path /usr/sbin/winbindd Port <Unknown> Host (removed) Source RPM Packages samba-winbind-4.1.5-1.fc20.x86_64 Target RPM Packages Policy RPM selinux-policy-3.12.1-122.fc20.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 3.13.4-200.fc20.x86_64 #1 SMP Thu Feb 20 23:00:47 UTC 2014 x86_64 x86_64 Alert Count 7 First Seen 2013-08-04 21:01:33 EDT Last Seen 2014-03-18 10:26:35 EDT Local ID 389cda37-721f-449f-8ba0-fd4e392ae187 Raw Audit Messages type=AVC msg=audit(1395152795.92:17227): avc: denied { signull } for pid=1197 comm="winbindd" scontext=system_u:system_r:winbind_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process type=SYSCALL msg=audit(1395152795.92:17227): arch=x86_64 syscall=kill success=no exit=EACCES a0=508d a1=0 a2=0 a3=49 items=0 ppid=1 pid=1197 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 ses=4294967295 tty=(none) comm=winbindd exe=/usr/sbin/winbindd subj=system_u:system_r:winbind_t:s0 key=(null) Hash: winbindd,winbind_t,kernel_t,process,signull Additional info: reporter: libreport-2.2.0 hashmarkername: setroubleshoot kernel: 3.13.6-200.fc20.x86_64 type: libreport Potential duplicate: bug 1036194
*** This bug has been marked as a duplicate of bug 1036194 ***