Red Hat Bugzilla – Bug 221168
dbus: Can't send to audit system
Last modified: 2013-03-05 22:48:50 EST
Description of problem:
Whenever I update my 'local' policy using 'semodule -i local.pp', I get the
following error in my syslog:
dbus: Can't send to audit system: USER_AVC avc: received policyload notice
(seqno=5) : exe="/bin/dbus-daemon" (sauid=505, hostname=?, addr=?, terminal=?)
Is this going to be fixed?????
Still haven't heard anything on this whether or not it is meaningful and whether
or not it will be fixed...
This seems to be an audit problem. Audit messages are not being allowed to be
sent if your uid is not 0.
Created attachment 151452 [details]
Start SELinux thread after setuid call.
Capabilities do not seem to be set cross threads. So if you setuid and retain
certain capabilities after thread creation. The other threads will not get the
capability. Moving the creation of the thread after the setuid/capset calls.
gives all threads the capability and the dbus code works.
This patch should be applied to RHEL5/FC6/and devel
Has the patch been applied yet?
I have a fully updated FC6 system and still get the same errors when doing a
Is a reboot or other service restart required to fix this problem?
You need to restart dbus for this to take effect. The best way to do this is to
reboot, since restarting the messagebus will cause certain desktop apps to blow up.
I still am getting the errors. Is this only patched in rawhide or will it be
backported to FC6?
I am pretty sure its built only for rawhide at this point. But if the problem is
also in FC6, it should be built there too. The patch is not terribly invasive.
Would be great to see it fixed in FC6 since I noticed and reported this bug back
in January on my FC6 system (I am the original bug poster to this thread so I am
assuming we are talking about the same thing :)