Latest rawhide: boot issue with avahi/hald/... ?

Tom London selinux at gmail.com
Mon Jan 23 15:11:49 UTC 2006 

Running latest rawhide, targeted/permissive: (only --excude=totem\*)

Get the following from audit.log:
allow NetworkManager_t initrc_t:unix_stream_socket { acquire_svc connectto };
allow avahi_t initrc_t:unix_stream_socket connectto;
allow cupsd_config_t initrc_t:unix_stream_socket { acquire_svc
connectto send_msg };
allow dhcpc_t initrc_t:unix_stream_socket { acquire_svc connectto };
allow hald_t initrc_t:unix_stream_socket { acquire_svc connectto };

Seems to be problems accessing /var/run/dbus/system_bus_socket: avc's
imply file is initrc_t, but ls -lZ yields:
srwxrwxrwx  root     root     system_u:object_r:system_dbusd_var_run_t
system_bus_socket

'messagebus' service did move earlier in startup sequence over the
weekend, but didn't seem to affect this.

Here are a few complete entries from audit.log
type=PATH msg=audit(01/23/2006 06:58:02.423:10) : item=0 flags=follow
inode=2142247 dev=fd:00 mode=socket,777 ouid=root ogid=root rdev=00:00
type=SOCKETCALL msg=audit(01/23/2006 06:58:02.423:10) : nargs=3 a0=c
a1=bf80d3aa a2=21
type=SOCKADDR msg=audit(01/23/2006 06:58:02.423:10) : saddr=local
/var/run/dbus/system_bus_socket
type=AVC_PATH msg=audit(01/23/2006 06:58:02.423:10) : 
path=/var/run/dbus/system_bus_socket
type=SYSCALL msg=audit(01/23/2006 06:58:02.423:10) : arch=i386
syscall=socketcall(connect) success=yes exit=0 a0=3 a1=bf80d370
a2=4d55d4 a3=1f items=1 pid=2646 auid=unknown(4294967295) uid=avahi
gid=avahi euid=avahi suid=avahi fsuid=avahi egid=avahi sgid=avahi
fsgid=avahi comm=avahi-daemon exe=/usr/sbin/avahi-daemon
type=AVC msg=audit(01/23/2006 06:58:02.423:10) : avc:  denied  {
connectto } for  pid=2646 comm=avahi-daemon name=system_bus_socket
scontext=system_u:system_r:avahi_t:s0
tcontext=system_u:system_r:initrc_t:s0 tclass=unix_stream_socket
----
type=PATH msg=audit(01/23/2006 06:58:02.879:15) : item=0 flags=follow
inode=2142247 dev=fd:00 mode=socket,777 ouid=root ogid=root rdev=00:00
type=SOCKETCALL msg=audit(01/23/2006 06:58:02.879:15) : nargs=3 a0=3
a1=bfbe580a a2=21
type=SOCKADDR msg=audit(01/23/2006 06:58:02.879:15) : saddr=local
/var/run/dbus/system_bus_socket
type=AVC_PATH msg=audit(01/23/2006 06:58:02.879:15) : 
path=/var/run/dbus/system_bus_socket
type=SYSCALL msg=audit(01/23/2006 06:58:02.879:15) : arch=i386
syscall=socketcall(connect) success=yes exit=0 a0=3 a1=bfbe57d0
a2=2835d4 a3=1f items=1 pid=2658 auid=unknown(4294967295) uid=root
gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root
comm=cups-config-dae exe=/usr/bin/cups-config-daemon
type=AVC msg=audit(01/23/2006 06:58:02.879:15) : avc:  denied  {
connectto } for  pid=2658 comm=cups-config-dae name=system_bus_socket
scontext=system_u:system_r:cupsd_config_t:s0
tcontext=system_u:system_r:initrc_t:s0 tclass=unix_stream_socket
----

tom
--
Tom London

More information about the selinux mailing list