Description of problem: I'm getting SELinux denials when various programs, e.g. BIND, DHCP try to use IPv6. Version-Release number of selected component (if applicable): selinux-policy-3.9.7-40.fc14.noarch.rpm How reproducible: Every time Steps to Reproduce: 1. Disable IPv6 by creating /etc/modprobe.d/blacklist-ipv6.conf with the following content: # taken from http://fedorasolved.org/network-solutions/disable-ipv6 install ipv6 /bin/true blacklist ipv6 2. Run a program that tries to use IPv6, e.g. service dhcpd start Actual results: ---- time->Wed May 11 11:41:36 2011 type=SYSCALL msg=audit(1305103296.140:512): arch=c000003e syscall=41 success=no exit=-97 a0=a a1=2 a2=11 a3=7f246588b000 items=0 ppid=21404 pid=21405 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=2 comm="dhcpd" exe="/usr/sbin/dhcpd" subj=unconfined_u:system_r:dhcpd_t:s0 key=(null) type=AVC msg=audit(1305103296.140:512): avc: denied { module_request } for pid=21405 comm="dhcpd" kmod="net-pf-10" scontext=unconfined_u:system_r:dhcpd_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=system Expected results: No denials. Additional info:
Am I supposed to fix this by setting the domain_kernel_load_modules SELinux boolean?
*** This bug has been marked as a duplicate of bug 641836 ***