483462 – (staff_u) SELinux is preventing console-kit-dae (consolekit_t) from doing various things

Bug 483462 - (staff_u) SELinux is preventing console-kit-dae (consolekit_t) from doing various things

Summary: (staff_u) SELinux is preventing console-kit-dae (consolekit_t) from doing var...

Keywords:
Status:	CLOSED DUPLICATE of bug 483212
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	kernel
Sub Component:
Version:	10
Hardware:	All
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	---
Assignee:	Eric Paris
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Duplicates (2):	483478 483479 (view as bug list)
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2009-02-01 15:49 UTC by Matěj Cepl
Modified:	2018-04-11 18:31 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2009-02-02 18:00:21 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Matěj Cepl 2009-02-01 15:49:15 UTC

I have couple of AVC denial reports with staff_u on Fedora 10:

SELinux is preventing console-kit-dae (consolekit_t) "sys_rawio" consolekit_t.

Podrobný popis:

SELinux denied access requested by console-kit-dae. It is not expected that this
access is required by console-kit-dae and this access may signal an intrusion
attempt. It is also possible that the specific version or configuration of the
application is causing it to require additional access.

Povolení přístupu:

You can generate a local policy module to allow this access - see FAQ
(http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable
SELinux protection altogether. Disabling SELinux protection is not recommended.
Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi)
against this package.

Další informace:

Kontext zdroje                system_u:system_r:consolekit_t:s0-s0:c0.c1023
Kontext cíle                 system_u:system_r:consolekit_t:s0-s0:c0.c1023
Objekty cíle                 None [ capability ]
Zdroj                         console-kit-dae
Cesta zdroje                  <Neznámé>
Port                          <Neznámé>
Počítač                    viklef.ceplovi.cz
RPM balíčky zdroje          
RPM balíčky cíle           
RPM politiky                  selinux-policy-3.5.13-40.fc10
Selinux povolen               True
Typ politiky                  targeted
MLS povoleno                  True
Vynucovací režim            Enforcing
Název zásuvného modulu     catchall
Název počítače            viklef.ceplovi.cz
Platforma                     Linux viklef.ceplovi.cz
                              2.6.27.12-170.2.5.fc10.x86_64 #1 SMP Wed Jan 21
                              01:33:24 EST 2009 x86_64 x86_64
Počet upozornění           2
Poprvé viděno               Pá 30. leden 2009, 06:01:01 CET
Naposledy viděno             Pá 30. leden 2009, 06:01:01 CET
Místní ID                   b7007b41-92c0-4da6-b004-cf932992c190
Čísla řádků              

Původní zprávy auditu      

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2261 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2262 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2262 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2263 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2263 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2264 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2264 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2265 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2265 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2266 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2266 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2267 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2267 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2268 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2268 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2269 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2269 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2270 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2270 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2271 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2271 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2272 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2272 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2273 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2273 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2274 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2274 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2275 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2275 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2276 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2276 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

Comment 1 Matěj Cepl 2009-02-01 15:49:57 UTC

Souhrn:

SELinux is preventing console-kit-dae (consolekit_t) "sys_admin" consolekit_t.

Podrobný popis:

SELinux denied access requested by console-kit-dae. It is not expected that this
access is required by console-kit-dae and this access may signal an intrusion
attempt. It is also possible that the specific version or configuration of the
application is causing it to require additional access.

Povolení přístupu:

You can generate a local policy module to allow this access - see FAQ
(http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can disable
SELinux protection altogether. Disabling SELinux protection is not recommended.
Please file a bug report (http://bugzilla.redhat.com/bugzilla/enter_bug.cgi)
against this package.

Další informace:

Kontext zdroje                system_u:system_r:consolekit_t:s0-s0:c0.c1023
Kontext cíle                 system_u:system_r:consolekit_t:s0-s0:c0.c1023
Objekty cíle                 None [ capability ]
Zdroj                         console-kit-dae
Cesta zdroje                  <Neznámé>
Port                          <Neznámé>
Počítač                    viklef.ceplovi.cz
RPM balíčky zdroje          
RPM balíčky cíle           
RPM politiky                  selinux-policy-3.5.13-40.fc10
Selinux povolen               True
Typ politiky                  targeted
MLS povoleno                  True
Vynucovací režim            Enforcing
Název zásuvného modulu     catchall
Název počítače            viklef.ceplovi.cz
Platforma                     Linux viklef.ceplovi.cz
                              2.6.27.12-170.2.5.fc10.x86_64 #1 SMP Wed Jan 21
                              01:33:24 EST 2009 x86_64 x86_64
Počet upozornění           2
Poprvé viděno               Pá 30. leden 2009, 06:01:01 CET
Naposledy viděno             Pá 30. leden 2009, 06:01:01 CET
Místní ID                   f39021f2-ca80-46a0-8052-d5db9b02429b
Čísla řádků              

Původní zprávy auditu      

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2277 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2277 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2278 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2278 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2279 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2279 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2280 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2280 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2281 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2281 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2282 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2282 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2283 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2283 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2284 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2284 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2285 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2285 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2286 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2286 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2287 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2287 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2288 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2288 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2289 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2289 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2290 comm="console-kit-dae" capability=21 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2290 comm="console-kit-dae" capability=17 scontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tcontext=system_u:system_r:consolekit_t:s0-s0:c0.c1023 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_admin } for  pid=2388 comm="pcscd" capability=21 scontext=system_u:system_r:pcscd_t:s0 tcontext=system_u:system_r:pcscd_t:s0 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_resource } for  pid=2388 comm="pcscd" capability=24 scontext=system_u:system_r:pcscd_t:s0 tcontext=system_u:system_r:pcscd_t:s0 tclass=capability

node=viklef.ceplovi.cz type=AVC msg=audit(1233291661.438:138): avc:  denied  { sys_rawio } for  pid=2388 comm="pcscd" capability=17 scontext=system_u:system_r:pcscd_t:s0 tcontext=system_u:system_r:pcscd_t:s0 tclass=capability

Comment 2 Daniel Walsh 2009-02-02 14:57:58 UTC

*** Bug 483478 has been marked as a duplicate of this bug. ***

Comment 3 Daniel Walsh 2009-02-02 14:58:31 UTC

*** Bug 483479 has been marked as a duplicate of this bug. ***

Comment 4 Eric Paris 2009-02-02 18:00:21 UTC


*** This bug has been marked as a duplicate of bug 483212 ***

Note You need to log in before you can comment on or make changes to this bug.