Hide Forgot
libreport version: 2.0.6 executable: /usr/bin/python hashmarkername: setroubleshoot kernel: 3.1.0-1.fc16.x86_64 reason: SELinux is preventing /usr/bin/dbus-launch from 'write' accesses on the file /home/zhangdi/.dbus/session-bus/571305c61e88a0b24732c8ba0000000d-0. time: Fri Oct 28 14:21:29 2011 description: :SELinux is preventing /usr/bin/dbus-launch from 'write' accesses on the file /home/zhangdi/.dbus/session-bus/571305c61e88a0b24732c8ba0000000d-0. : :***** Plugin catchall (100. confidence) suggests *************************** : :If you believe that dbus-launch should be allowed write access on the 571305c61e88a0b24732c8ba0000000d-0 file by default. :Then you should report this as a bug. :You can generate a local policy module to allow this access. :Do :allow this access for now by executing: :# grep dbus-launch /var/log/audit/audit.log | audit2allow -M mypol :# semodule -i mypol.pp : :Additional Information: :Source Context system_u:system_r:xdm_t:s0-s0:c0.c1023 :Target Context unconfined_u:object_r:user_home_t:s0 :Target Objects /home/zhangdi/.dbus/session- : bus/571305c61e88a0b24732c8ba0000000d-0 [ file ] :Source dbus-launch :Source Path /usr/bin/dbus-launch :Port <Unknown> :Host (removed) :Source RPM Packages dbus-x11-1.4.10-3.fc16 :Target RPM Packages :Policy RPM selinux-policy-3.10.0-43.fc16 :Selinux Enabled True :Policy Type targeted :Enforcing Mode Enforcing :Host Name (removed) :Platform Linux (removed) : 3.1.0-0.rc10.git0.1.fc16.x86_64 #1 SMP Wed Oct 19 : 05:02:17 UTC 2011 x86_64 x86_64 :Alert Count 9 :First Seen Fri 21 Oct 2011 09:42:36 AM CST :Last Seen Fri 21 Oct 2011 02:13:15 PM CST :Local ID 15821666-0a12-4a41-ba98-a197d3cdc544 : :Raw Audit Messages :type=AVC msg=audit(1319177595.928:299): avc: denied { write } for pid=10428 comm="dbus-launch" name="571305c61e88a0b24732c8ba0000000d-0" dev=sdb3 ino=8257548 scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file : : :type=SYSCALL msg=audit(1319177595.928:299): arch=x86_64 syscall=open success=no exit=EACCES a0=17b9d40 a1=241 a2=1b6 a3=7fff75261b30 items=0 ppid=10427 pid=10428 auid=4294967295 uid=1000 gid=1000 euid=1000 suid=1000 fsuid=1000 egid=1000 sgid=1000 fsgid=1000 tty=(none) ses=4294967295 comm=dbus-launch exe=/usr/bin/dbus-launch subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 key=(null) : :Hash: dbus-launch,xdm_t,user_home_t,file,write : :audit2allow : :#============= xdm_t ============== :allow xdm_t user_home_t:file write; : :audit2allow -R : :#============= xdm_t ============== :allow xdm_t user_home_t:file write; :
When you log into this system, what does id -Z say?
(In reply to comment #1) > When you log into this system, what does > id -Z > say? [zhangdi@zhangdi-linux ~]$ id -Z unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
And I take it your UID is 1000? Not sure why gdm would be launching dbus-session on your homedir, before calling pam_selinux. Has this happened again? Have you logged in and out in the last week?
yes, my UID is 1000, I am not sure whether it happen again. Fedora is installed on my Thinkpad T420 laptop, so, I log in and out everyday. If it happen again, I will post here again.
Ok, let us know.