Bug 726869 - [abrt] (null): SELinux is preventing systemd-logind from 'setattr' accesses on the chr_file event4.
Summary: [abrt] (null): SELinux is preventing systemd-logind from 'setattr' accesses o...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy
Version: rawhide
Hardware: i686
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Miroslav Grepl
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard: abrt_hash:cdabd4f47fccb4d72b0dfd46af6...
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2011-07-30 05:03 UTC by edy
Modified: 2012-02-10 08:50 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2012-02-10 08:50:38 UTC
Type: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description edy 2011-07-30 05:03:43 UTC 
abrt version: 2.0.5
executable:     /usr/bin/python
hashmarkername: setroubleshoot
kernel:         3.0.0-1.fc16.i686
reason:         SELinux is preventing systemd-logind from 'setattr' accesses on the chr_file event4.
time:           Sat Jul 30 12:04:03 2011

description:
:SELinux is preventing systemd-logind from 'setattr' accesses on the chr_file event4.
:
:*****  Plugin catchall (100. confidence) suggests  ***************************
:
:If you believe that systemd-logind should be allowed setattr access on the event4 chr_file by default.
:Then you should report this as a bug.
:You can generate a local policy module to allow this access.
:Do
:allow this access for now by executing:
:# grep systemd-logind /var/log/audit/audit.log | audit2allow -M mypol
:# semodule -i mypol.pp
:
:Additional Information:
:Source Context                system_u:system_r:systemd_logind_t:s0
:Target Context                system_u:object_r:event_device_t:s0
:Target Objects                event4 [ chr_file ]
:Source                        systemd-logind
:Source Path                   systemd-logind
:Port                          <Unknown>
:Host                          (removed)
:Source RPM Packages           
:Target RPM Packages           
:Policy RPM                    selinux-policy-3.10.0-10.fc16
:Selinux Enabled               True
:Policy Type                   targeted
:Enforcing Mode                Enforcing
:Host Name                     (removed)
:Platform                      Linux (removed) 3.0.0-1.fc16.i686.PAE
:                              #1 SMP Fri Jul 22 16:07:54 UTC 2011 i686 i686
:Alert Count                   4
:First Seen                    Fri 29 Jul 2011 09:00:13 PM WIT
:Last Seen                     Sat 30 Jul 2011 10:20:42 AM WIT
:Local ID                      6d2e1ffc-1d2e-4628-be97-207d2f30acfb
:
:Raw Audit Messages
:type=AVC msg=audit(1311996042.525:216): avc:  denied  { setattr } for  pid=836 comm="systemd-logind" name="event4" dev=devtmpfs ino=11600 scontext=system_u:system_r:systemd_logind_t:s0 tcontext=system_u:object_r:event_device_t:s0 tclass=chr_file
:
:
:Hash: systemd-logind,systemd_logind_t,event_device_t,chr_file,setattr
:
:audit2allow
:
:#============= systemd_logind_t ==============
:allow systemd_logind_t event_device_t:chr_file setattr;
:
:audit2allow -R
:
:#============= systemd_logind_t ==============
:allow systemd_logind_t event_device_t:chr_file setattr;
:
Comment 1 Daniel Walsh 2011-08-02 18:30:20 UTC 
Fixed in selinux-policy-3.10.0-14.fc16
Note You need to log in before you can comment on or make changes to this bug.