Description of problem: Got following AVC denial messages while fetching and sending mail using fetchmail and postfix. -- begin messages -- avc: denied { read } for comm="smtpd" dev=eventpollfs egid=0 euid=0 exe="/usr/libexec/postfix/smtpd" exit=0 fsgid=0 fsuid=0 gid=0 items=0 name="[9215]" path="eventpoll:[9215]" pid=3484 scontext=system_u:system_r:postfix_smtpd_t:s0 sgid=0 subj=system_u:system_r:postfix_smtpd_t:s0 suid=0 tclass=file tcontext=system_u:system_r:postfix_master_t:s0 tty=(none) uid=0 avc: denied { read } for comm="smtp" dev=eventpollfs egid=0 euid=0 exe="/usr/libexec/postfix/smtp" exit=0 fsgid=0 fsuid=0 gid=0 items=0 name="[9215]" path="eventpoll:[9215]" pid=3619 scontext=system_u:system_r:postfix_smtp_t:s0 sgid=0 subj=system_u:system_r:postfix_smtp_t:s0 suid=0 tclass=file tcontext=system_u:system_r:postfix_master_t:s0 tty=(none) uid=0 -- end messages -- Version-Release number of selected component (if applicable): selinux-policy-targeted-2.6.4-13.fc7 fetchmail-6.3.7-1.fc7 postfix-2.4.3-2.fc7 mailx-8.1.1-46.fc7 How reproducible: It is reproducible everytime. Steps to Reproduce: Start 'fetchmail' or Send mail using 'mail' command using 'postfix' as MTA. Actual results: Got AVC denials. Expected results: No AVC denials. Additional info: Following is the alert information copy-pasted from setroubleshoot browser. Source Context system_u:system_r:postfix_smtp_t Target Context system_u:system_r:postfix_master_t Target Objects eventpoll:[9215] [ file ] Affected RPM Packages postfix-2.4.3-2.fc7 [application] Policy RPM selinux-policy-2.6.4-13.fc7 Selinux Enabled True Policy Type targeted MLS Enabled True Enforcing Mode Enforcing Plugin Name plugins.catchall_file Host Name chatteau.d.lf Platform Linux chatteau.d.lf 2.6.21-1.3228.fc7 #1 SMP Tue Jun 12 14:56:37 EDT 2007 x86_64 x86_64 Alert Count 2 First Seen Sat 16 Jun 2007 12:41:39 AM IST Last Seen Sat 16 Jun 2007 12:44:30 AM IST Local ID 9bda56e6-35af-4e5c-9dd3-3ebc824bb50f Line Numbers Source Context system_u:system_r:postfix_smtpd_t Target Context system_u:system_r:postfix_master_t Target Objects eventpoll:[9215] [ file ] Affected RPM Packages postfix-2.4.3-2.fc7 [application] Policy RPM selinux-policy-2.6.4-13.fc7 Selinux Enabled True Policy Type targeted MLS Enabled True Enforcing Mode Enforcing Plugin Name plugins.catchall_file Host Name chatteau.d.lf Platform Linux chatteau.d.lf 2.6.21-1.3228.fc7 #1 SMP Tue Jun 12 14:56:37 EDT 2007 x86_64 x86_64 Alert Count 2 First Seen Sat 16 Jun 2007 12:35:49 AM IST Last Seen Sat 16 Jun 2007 12:44:58 AM IST Local ID d8519360-3c04-47d4-88a3-843045d4182e Line Numbers
Hi I am also getting the same as this on my setup. Regards Daniel
Hi Here is the audit2allow output: [root@jack ~]# audit2allow -m temppostfix -a -l> temppostfix.te [root@jack ~]# cat temppostfix.te module temppostfix 1.0; require { type postfix_local_t; type postfix_showq_t; type postfix_smtpd_t; type postfix_master_t; type procmail_t; type postfix_smtp_t; class file read; } #============= postfix_showq_t ============== allow postfix_showq_t postfix_master_t:file read; #============= postfix_smtp_t ============== allow postfix_smtp_t postfix_master_t:file read; #============= postfix_smtpd_t ============== allow postfix_smtpd_t postfix_master_t:file read; #============= procmail_t ============== allow procmail_t postfix_local_t:file read;
Add myself on the Cc list
selinux-policy-targeted-2.6.4-14.fc7 does not fix it
Same here, add myself to the Cc list.
Fixed in selinux-policy-targeted-2.6.4-17.fc7
selinux-policy-targeted-2.6.4-21.fc7 works for me. Close the bug?
Closing as fixes are in the current release