Red Hat Bugzilla – Bug 453360
vpnc apparently broken by selinux policy changes
Last modified: 2008-06-30 16:13:08 EDT
ifup [vpnc if] silently fails, with the following recorded in the audit.log:
type=SELINUX_ERR msg=audit(1214799326.764:19): security_compute_sid: invalid
context unconfined_u:unconfined_r:ifconfig_t:s0-s0:c0.c1023 for
type=SYSCALL msg=audit(1214799326.764:19): arch=c000003e syscall=59 success=no
exit=-13 a0=1d47810 a1=1d47780 a2=1d46300 a3=3a42f67a70 items=0 ppid=3808
pid=3809 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0
tty=pts0 ses=1 comm="vpnc-script" exe="/bin/bash"
We need to find out how this happened in the first place, and try to prevent
this kind of problem from happening again.
vpnc should also not fail silenty.
*** This bug has been marked as a duplicate of 453236 ***
That would be a problem. I don't think I changed any transitions, although I
could have fixed something, that triggered another transition.
Yeah, we were trying to figure it out. And I still can't see how it broke!