116838 – tty devices aren't working right for command output

Bug 116838 - tty devices aren't working right for command output

Summary: tty devices aren't working right for command output

Keywords:
Status:	CLOSED RAWHIDE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	policy
Sub Component:
Version:	rawhide
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Daniel Walsh
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	FC2Blocker
TreeView+	depends on / blocked

Reported:	2004-02-25 17:24 UTC by Bill Nottingham
Modified:	2014-03-17 02:42 UTC (History)
CC List:	1 user (show)
Fixed In Version:	1.9.2-11
Clone Of:
Environment:
Last Closed:	2004-04-05 22:47:14 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Bill Nottingham 2004-02-25 17:24:10 UTC

Description of problem:

Certain apps fail to write their output to the tty.

Version-Release number of selected component (if applicable):

policy-1.6-6

How reproducible:

Every time

Steps to Reproduce:
1. locate libplain.la
  
Actual results:

# locate libplain.la
savc: denied { read write } for pid=50001 exe=/usr/bin/slocate
path=/dev/tty dev=hda3 ino=450519 scontext=root:system-r:locate_t
tcontext=root:object_r:sysadm_tty_device_t tclass=chr_file

Expected results:

# locate libplain.la
/usr/lib64/sasl2/libplain.la

Comment 1 Daniel Walsh 2004-03-30 19:43:06 UTC

Fixed in latest policy.

policy-1.9.1-2

Comment 2 Ben Levenson 2004-04-05 22:47:14 UTC

fix verified in policy-1.9.2-11:
allow locate_t { userpty_type { sysadm_tty_device_t sysadm_devpts_t }
}:chr_file { ioctl read getattr lock write append };

Note You need to log in before you can comment on or make changes to this bug.