Bug 169237 - dund isn't able to start a pppd conection over bluetooth
Summary: dund isn't able to start a pppd conection over bluetooth
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy-targeted
Version: 4
Hardware: i386
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Russell Coker
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2005-09-25 21:35 UTC by Marcel Nijenhof
Modified: 2007-11-30 22:11 UTC (History)
0 users

Fixed In Version: 1.27.1-2.3
Clone Of:
Environment:
Last Closed: 2006-03-22 03:20:08 UTC
Type: ---
Embargoed:


Attachments (Terms of Use)

Description Marcel Nijenhof 2005-09-25 21:35:02 UTC
Description of problem:
  dund isn't able to start a pppd conection over bluetooth.
  I get an error that he isn't able to open /dev/rfcomm0
  From the syslog:
    pppd[...]: Couldn't stat /dev/rfcomm0: Permission denied

Version-Release number of selected component (if applicable):
  bluez-utils-2.15-7
  selinux-policy-targeted-1.27.1-2.1

How reproducible:


Steps to Reproduce:
1. Configure bluetooth and dund as server
2. Use enforcement in selinux
3. Setup a "dund" connection
  
Actual results:
  You get the following error in syslog:
    pppd[...]: Couldn't stat /dev/rfcomm0: Permission denied

Expected results:
  ppp should start and you should be able to use ip on the other device


Additional info:
  The problem is the selinux permisions on "/dev/rfcomm0".
  The default permisions are:
    # ls -lZ /dev/rfcomm0
    crw-rw----  root root system_u:object_r:device_t     /dev/rfcomm0
  I have changed "/etc/selinux/targeted/contexts/files/file_contexts".
  I added the folling line (i copied the "/dev/ircomm" line):
    /dev/rfcomm[0-9]+       -c      system_u:object_r:tty_device_t
  That changes the permisions for "/dev/rfcomm0" to:
    # ls -lZ /dev/rfcomm0
    crw-rw----  root root system_u:object_r:tty_device_t /dev/rfcomm0
  With this setup it works.

  Ofcourse it also works when you disable selinux!

Comment 1 Daniel Walsh 2005-09-27 19:43:55 UTC
Fixed in selinux-policy-targeted-1.27.1-2.3



Note You need to log in before you can comment on or make changes to this bug.